wannacry | hxxps://github[.]com/Sn8ow/NoEscape[.]exe_Virus/releases/tag/1[.]0[.]0

Resubmissions

10/11/2024, 01:43 UTC

241110-b5k6pswldv 3

10/11/2024, 01:25 UTC

241110-btcp7awja1 10

Analysis

max time kernel
869s
max time network
871s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
10/11/2024, 01:25 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0

Score

10^/10

wannacry defense_evasion discovery execution impact persistence ransomware spyware stealer worm

Malware Config

Extracted

Path

C:\Users\Admin\Downloads\@Please_Read_Me@.txt

Family

wannacry

Ransom Note

Q: What's wrong with my files? A: Ooops, your important files are encrypted. It means you will not be able to access them anymore until they are decrypted. If you follow our instructions, we guarantee that you can decrypt all your files quickly and safely! Let's start decrypting! Q: What do I do? A: First, you need to pay service fees for the decryption. Please send $300 worth of bitcoin to this bitcoin address: 13AM4VW2dhxYgXeQepoHkHSQuy6NgaEb94 Next, please find an application file named "@WanaDecryptor@.exe". It is the decrypt software. Run and follow the instructions! (You may need to disable your antivirus for a while.) Q: How can I trust? A: Don't worry about decryption. We will decrypt your files surely because nobody will trust us if we cheat users. * If you need our assistance, send a message by clicking <Contact Us> on the decryptor window. �

Wallets

13AM4VW2dhxYgXeQepoHkHSQuy6NgaEb94

Signatures

Wannacry
WannaCry is a ransomware cryptoworm.
ransomware worm wannacry
Wannacry family
wannacry
Deletes shadow copies 3 TTPs
Ransomware often targets backup files to inhibit system recovery.
ransomware defense_evasion impact execution

File Deletion
T1070.004

Inhibit System Recovery
T1490

Windows Management Instrumentation
T1047
Downloads MZ/PE file

Drops startup file 2 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\~SD6E1A.tmp	WannaCry.EXE
File opened for modification	C:\Users\Admin\AppData\Roaming\Microsoft\Word\STARTUP\~SD6E21.tmp	WannaCry.EXE

Executes dropped EXE 28 IoCs

pid	Process
3304	WannaCry.EXE
2596	taskdl.exe
3280	WannaCry.EXE
4332	WannaCry.EXE
1064	@WanaDecryptor@.exe
212	@WanaDecryptor@.exe
4280	taskhsvc.exe
3124	taskdl.exe
5116	taskse.exe
2796	@WanaDecryptor@.exe
4508	taskdl.exe
3376	taskse.exe
3880	@WanaDecryptor@.exe
4944	taskse.exe
3284	@WanaDecryptor@.exe
1592	taskdl.exe
3760	taskse.exe
1712	@WanaDecryptor@.exe
740	taskdl.exe
4352	taskse.exe
3884	@WanaDecryptor@.exe
3412	taskdl.exe
648	taskse.exe
3524	@WanaDecryptor@.exe
4156	taskdl.exe
4260	taskse.exe
4952	@WanaDecryptor@.exe
2332	taskdl.exe

Loads dropped DLL 8 IoCs

pid	Process
5068	vc_redist.x86.exe
1312	vc_redist.x86.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe

Modifies file permissions 1 TTPs 3 IoCs

discovery

File and Directory Permissions Modification

T1222

pid	Process
736	icacls.exe
2724	icacls.exe
2992	icacls.exe

Reads user/profile data of web browsers 3 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Credentials from Web Browsers
T1555.003

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\nzfbkoaczl750 = "\"C:\\Users\\Admin\\Downloads\\tasksche.exe\""	reg.exe

File and Directory Permissions Modification: Windows File and Directory Permissions Modification 1 TTPs
defense_evasion

Windows File and Directory Permissions Modification
T1222.001

Legitimate hosting services abused for malware hosting/C2 1 TTPs 3 IoCs

Web Service

T1102

flow	ioc
161	camo.githubusercontent.com
180	raw.githubusercontent.com
181	raw.githubusercontent.com

Sets desktop wallpaper using registry 2 TTPs 2 IoCs

ransomware

Defacement

T1491

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@WanaDecryptor@.bmp"	WannaCry.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@WanaDecryptor@.bmp"	@WanaDecryptor@.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 47 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	icacls.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	vc_redist.x86.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WMIC.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	vc_redist.x86.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	NoEscape.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WannaCry.EXE
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WannaCry.EXE
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	icacls.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskhsvc.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	WannaCry.EXE
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	icacls.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cscript.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	@WanaDecryptor@.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	vc_redist.x86.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskdl.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	cmd.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	vc_redist.x86.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	attrib.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	reg.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	taskse.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3350944739-639801879-157714471-1000_Classes\Local Settings	msedge.exe

Modifies registry key 1 TTPs 1 IoCs

Modify Registry

T1112

pid	Process
808	reg.exe

NTFS ADS 1 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 411345.crdownload:SmartScreen	msedge.exe

Suspicious behavior: EnumeratesProcesses 22 IoCs

pid	Process
1072	msedge.exe
1072	msedge.exe
2412	msedge.exe
2412	msedge.exe
4896	identity_helper.exe
4896	identity_helper.exe
4084	msedge.exe
4084	msedge.exe
1008	msedge.exe
1008	msedge.exe
1008	msedge.exe
1008	msedge.exe
2488	msedge.exe
2488	msedge.exe
4656	msedge.exe
4656	msedge.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe
4280	taskhsvc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2796	@WanaDecryptor@.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs

pid	Process
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe

Suspicious use of AdjustPrivilegeToken 59 IoCs

description	pid	Process
Token: SeIncreaseQuotaPrivilege	4380	WMIC.exe
Token: SeSecurityPrivilege	4380	WMIC.exe
Token: SeTakeOwnershipPrivilege	4380	WMIC.exe
Token: SeLoadDriverPrivilege	4380	WMIC.exe
Token: SeSystemProfilePrivilege	4380	WMIC.exe
Token: SeSystemtimePrivilege	4380	WMIC.exe
Token: SeProfSingleProcessPrivilege	4380	WMIC.exe
Token: SeIncBasePriorityPrivilege	4380	WMIC.exe
Token: SeCreatePagefilePrivilege	4380	WMIC.exe
Token: SeBackupPrivilege	4380	WMIC.exe
Token: SeRestorePrivilege	4380	WMIC.exe
Token: SeShutdownPrivilege	4380	WMIC.exe
Token: SeDebugPrivilege	4380	WMIC.exe
Token: SeSystemEnvironmentPrivilege	4380	WMIC.exe
Token: SeRemoteShutdownPrivilege	4380	WMIC.exe
Token: SeUndockPrivilege	4380	WMIC.exe
Token: SeManageVolumePrivilege	4380	WMIC.exe
Token: 33	4380	WMIC.exe
Token: 34	4380	WMIC.exe
Token: 35	4380	WMIC.exe
Token: 36	4380	WMIC.exe
Token: SeIncreaseQuotaPrivilege	4380	WMIC.exe
Token: SeSecurityPrivilege	4380	WMIC.exe
Token: SeTakeOwnershipPrivilege	4380	WMIC.exe
Token: SeLoadDriverPrivilege	4380	WMIC.exe
Token: SeSystemProfilePrivilege	4380	WMIC.exe
Token: SeSystemtimePrivilege	4380	WMIC.exe
Token: SeProfSingleProcessPrivilege	4380	WMIC.exe
Token: SeIncBasePriorityPrivilege	4380	WMIC.exe
Token: SeCreatePagefilePrivilege	4380	WMIC.exe
Token: SeBackupPrivilege	4380	WMIC.exe
Token: SeRestorePrivilege	4380	WMIC.exe
Token: SeShutdownPrivilege	4380	WMIC.exe
Token: SeDebugPrivilege	4380	WMIC.exe
Token: SeSystemEnvironmentPrivilege	4380	WMIC.exe
Token: SeRemoteShutdownPrivilege	4380	WMIC.exe
Token: SeUndockPrivilege	4380	WMIC.exe
Token: SeManageVolumePrivilege	4380	WMIC.exe
Token: 33	4380	WMIC.exe
Token: 34	4380	WMIC.exe
Token: 35	4380	WMIC.exe
Token: 36	4380	WMIC.exe
Token: SeBackupPrivilege	4480	vssvc.exe
Token: SeRestorePrivilege	4480	vssvc.exe
Token: SeAuditPrivilege	4480	vssvc.exe
Token: SeTcbPrivilege	5116	taskse.exe
Token: SeTcbPrivilege	5116	taskse.exe
Token: SeTcbPrivilege	3376	taskse.exe
Token: SeTcbPrivilege	3376	taskse.exe
Token: SeTcbPrivilege	4944	taskse.exe
Token: SeTcbPrivilege	4944	taskse.exe
Token: SeTcbPrivilege	3760	taskse.exe
Token: SeTcbPrivilege	3760	taskse.exe
Token: SeTcbPrivilege	4352	taskse.exe
Token: SeTcbPrivilege	4352	taskse.exe
Token: SeTcbPrivilege	648	taskse.exe
Token: SeTcbPrivilege	648	taskse.exe
Token: SeTcbPrivilege	4260	taskse.exe
Token: SeTcbPrivilege	4260	taskse.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe

Suspicious use of SendNotifyMessage 48 IoCs

pid	Process
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe
2412	msedge.exe

Suspicious use of SetWindowsHookEx 14 IoCs

pid	Process
2412	msedge.exe
2412	msedge.exe
1064	@WanaDecryptor@.exe
1064	@WanaDecryptor@.exe
212	@WanaDecryptor@.exe
212	@WanaDecryptor@.exe
2796	@WanaDecryptor@.exe
2796	@WanaDecryptor@.exe
3880	@WanaDecryptor@.exe
3284	@WanaDecryptor@.exe
1712	@WanaDecryptor@.exe
3884	@WanaDecryptor@.exe
3524	@WanaDecryptor@.exe
4952	@WanaDecryptor@.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2412 wrote to memory of 660	2412	msedge.exe	83
PID 2412 wrote to memory of 660	2412	msedge.exe	83
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1096	2412	msedge.exe	85
PID 2412 wrote to memory of 1072	2412	msedge.exe	86
PID 2412 wrote to memory of 1072	2412	msedge.exe	86
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87
PID 2412 wrote to memory of 4624	2412	msedge.exe	87

Uses Volume Shadow Copy service COM API
The Volume Shadow Copy service is used to manage backups/snapshots.
ransomware

Views/modifies file attributes 1 TTPs 4 IoCs

evasion

Hidden Files and Directories

T1564.001

pid	Process
4976	attrib.exe
1044	attrib.exe
2824	attrib.exe
3600	attrib.exe

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
1⤵
- Enumerates system info in registry
- Modifies registry class
- NTFS ADS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2412
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7fffa37246f8,0x7fffa3724708,0x7fffa3724718
  2⤵
  PID:660
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2128 /prefetch:2
  2⤵
  PID:1096
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2848 /prefetch:8
  2⤵
  PID:4624
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1
  2⤵
  PID:4544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3376 /prefetch:1
  2⤵
  PID:2440
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5248 /prefetch:8
  2⤵
  PID:2956
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5248 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4896
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1
  2⤵
  PID:2300
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1
  2⤵
  PID:1712
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3468 /prefetch:1
  2⤵
  PID:2488
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1
  2⤵
  PID:2652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5636 /prefetch:8
  2⤵
  PID:4080
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1192 /prefetch:1
  2⤵
  PID:3352
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5964 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5736 /prefetch:1
  2⤵
  PID:2596
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5588 /prefetch:1
  2⤵
  PID:3368
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1
  2⤵
  PID:3768
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4812 /prefetch:1
  2⤵
  PID:2324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
  2⤵
  PID:544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5312 /prefetch:1
  2⤵
  PID:1324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5752 /prefetch:1
  2⤵
  PID:2468
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6488 /prefetch:1
  2⤵
  PID:4856
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5728 /prefetch:1
  2⤵
  PID:3248
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5888 /prefetch:1
  2⤵
  PID:4928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3436 /prefetch:1
  2⤵
  PID:2012
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6152 /prefetch:1
  2⤵
  PID:1960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6532 /prefetch:8
  2⤵
  PID:4456
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3496 /prefetch:1
  2⤵
  PID:4616
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5824 /prefetch:2
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:1008
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4860 /prefetch:1
  2⤵
  PID:4308
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6192 /prefetch:1
  2⤵
  PID:2220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6240 /prefetch:1
  2⤵
  PID:4324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6192 /prefetch:1
  2⤵
  PID:4444
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6256 /prefetch:1
  2⤵
  PID:2224
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6712 /prefetch:1
  2⤵
  PID:3356
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2844 /prefetch:1
  2⤵
  PID:2620
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5016 /prefetch:1
  2⤵
  PID:3664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
  2⤵
  PID:716
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
  2⤵
  PID:4212
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5388 /prefetch:1
  2⤵
  PID:2928
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7240 /prefetch:1
  2⤵
  PID:3636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7060 /prefetch:1
  2⤵
  PID:2336
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7052 /prefetch:1
  2⤵
  PID:4584
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4812 /prefetch:1
  2⤵
  PID:1092
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1804 /prefetch:1
  2⤵
  PID:1884
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7464 /prefetch:1
  2⤵
  PID:5080
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7476 /prefetch:1
  2⤵
  PID:3804
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8024 /prefetch:1
  2⤵
  PID:1496
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8044 /prefetch:1
  2⤵
  PID:3792
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7432 /prefetch:1
  2⤵
  PID:1396
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8176 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2488
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3564 /prefetch:1
  2⤵
  PID:672
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6280 /prefetch:1
  2⤵
  PID:320
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5616 /prefetch:1
  2⤵
  PID:2960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7200 /prefetch:1
  2⤵
  PID:724
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
  2⤵
  PID:3344
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4808 /prefetch:1
  2⤵
  PID:808
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6912 /prefetch:1
  2⤵
  PID:528
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
  2⤵
  PID:4152
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2192 /prefetch:1
  2⤵
  PID:2636
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6728 /prefetch:8
  2⤵
  PID:4748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6192 /prefetch:1
  2⤵
  PID:676
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6540 /prefetch:1
  2⤵
  PID:4800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
  2⤵
  PID:2564
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6028 /prefetch:1
  2⤵
  PID:912
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4092 /prefetch:1
  2⤵
  PID:4084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7372 /prefetch:8
  2⤵
  PID:2652
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6928 /prefetch:1
  2⤵
  PID:1440
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5492 /prefetch:1
  2⤵
  PID:2584
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3668 /prefetch:1
  2⤵
  PID:1868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
  2⤵
  PID:4212
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1328 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4656
- C:\Users\Admin\Downloads\WannaCry.EXE
  "C:\Users\Admin\Downloads\WannaCry.EXE"
  2⤵
  - Drops startup file
  - Executes dropped EXE
  - Sets desktop wallpaper using registry
  - System Location Discovery: System Language Discovery
  PID:3304
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h .
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:3600
- - C:\Windows\SysWOW64\icacls.exe
    icacls . /grant Everyone:F /T /C /Q
    3⤵
    - Modifies file permissions
    - System Location Discovery: System Language Discovery
    PID:736
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:2596
- - C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\cmd.exe /c 210241731202672.bat
    3⤵
    - System Location Discovery: System Language Discovery
    PID:2844
  - - C:\Windows\SysWOW64\cscript.exe
      cscript.exe //nologo m.vbs
      4⤵
      System Location Discovery: System Language Discovery
      PID:1800
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h +s F:\$RECYCLE
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:4976
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe co
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:1064
  - - C:\Users\Admin\Downloads\TaskData\Tor\taskhsvc.exe
      TaskData\Tor\taskhsvc.exe
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      System Location Discovery: System Language Discovery
      Suspicious behavior: EnumeratesProcesses
      PID:4280
- - C:\Windows\SysWOW64\cmd.exe
    cmd.exe /c start /b @WanaDecryptor@.exe vs
    3⤵
    - System Location Discovery: System Language Discovery
    PID:2748
  - - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
      @WanaDecryptor@.exe vs
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      Suspicious use of SetWindowsHookEx
      PID:212
    - - C:\Windows\SysWOW64\cmd.exe
        
        cmd.exe /c vssadmin delete shadows /all /quiet & wmic shadowcopy delete & bcdedit /set {default} bootstatuspolicy ignoreallfailures & bcdedit /set {default} recoveryenabled no & wbadmin delete catalog -quiet
        5⤵
        System Location Discovery: System Language Discovery
        
        PID:2528
      - C:\Windows\SysWOW64\Wbem\WMIC.exe
        
        wmic shadowcopy delete
        6⤵
        System Location Discovery: System Language Discovery
        Suspicious use of AdjustPrivilegeToken
        
        PID:4380
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:3124
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:5116
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - Sets desktop wallpaper using registry
    - System Location Discovery: System Language Discovery
    - Suspicious behavior: GetForegroundWindowSpam
    - Suspicious use of SetWindowsHookEx
    PID:2796
- - C:\Windows\SysWOW64\cmd.exe
    cmd.exe /c reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "nzfbkoaczl750" /t REG_SZ /d "\"C:\Users\Admin\Downloads\tasksche.exe\"" /f
    3⤵
    - System Location Discovery: System Language Discovery
    PID:4184
  - - C:\Windows\SysWOW64\reg.exe
      reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "nzfbkoaczl750" /t REG_SZ /d "\"C:\Users\Admin\Downloads\tasksche.exe\"" /f
      4⤵
      Adds Run key to start application
      System Location Discovery: System Language Discovery
      Modifies registry key
      PID:808
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:4508
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:3376
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:3880
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:4944
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:3284
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:1592
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:3760
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:1712
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:740
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:4352
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:3884
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:3412
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:648
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:3524
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:4156
- - C:\Users\Admin\Downloads\taskse.exe
    taskse.exe C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of AdjustPrivilegeToken
    PID:4260
- - C:\Users\Admin\Downloads\@WanaDecryptor@.exe
    @WanaDecryptor@.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    - Suspicious use of SetWindowsHookEx
    PID:4952
- - C:\Users\Admin\Downloads\taskdl.exe
    taskdl.exe
    3⤵
    - Executes dropped EXE
    - System Location Discovery: System Language Discovery
    PID:2332
- C:\Users\Admin\Downloads\WannaCry.EXE
  "C:\Users\Admin\Downloads\WannaCry.EXE"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3280
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h .
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:1044
- - C:\Windows\SysWOW64\icacls.exe
    icacls . /grant Everyone:F /T /C /Q
    3⤵
    - Modifies file permissions
    - System Location Discovery: System Language Discovery
    PID:2724
- C:\Users\Admin\Downloads\WannaCry.EXE
  "C:\Users\Admin\Downloads\WannaCry.EXE"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:4332
- - C:\Windows\SysWOW64\attrib.exe
    attrib +h .
    3⤵
    - System Location Discovery: System Language Discovery
    - Views/modifies file attributes
    PID:2824
- - C:\Windows\SysWOW64\icacls.exe
    icacls . /grant Everyone:F /T /C /Q
    3⤵
    - Modifies file permissions
    - System Location Discovery: System Language Discovery
    PID:2992
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8172 /prefetch:1
  2⤵
  PID:1044
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8072 /prefetch:1
  2⤵
  PID:4500
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8120 /prefetch:1
  2⤵
  PID:3272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3916 /prefetch:1
  2⤵
  PID:2880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7908 /prefetch:1
  2⤵
  PID:3480
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6164 /prefetch:1
  2⤵
  PID:620
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7512 /prefetch:1
  2⤵
  PID:3664
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6204 /prefetch:1
  2⤵
  PID:4192
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,16751333694416090761,13247598049658182154,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4808 /prefetch:1
  2⤵
  PID:1592

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3572

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4752

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:2748

C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe
"C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:1656
- C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe
  "C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe" -burn.unelevated BurnPipe.{C4613887-B347-4DC6-BBE3-F226190A25B6} {AA5627FE-BE9C-4F6B-A9F3-677E7EF4406C} 1656
  2⤵
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  PID:5068

C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe
"C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:2792
- C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe
  "C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\vc_redist.x86.exe" -burn.unelevated BurnPipe.{8C4A61A2-E2A3-4CED-8133-A8A49B440845} {F70D4173-CF86-4E0D-9353-32C01FAF8FC9} 2792
  2⤵
  - Loads dropped DLL
  - System Location Discovery: System Language Discovery
  PID:1312

C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\NoEscape.exe
"C:\Users\Admin\Downloads\NoEscape.exe\NoEscape.exe\NoEscape.exe-Latest Version\NoEscape.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:2120

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2ec 0x300
1⤵
PID:3524

C:\Windows\system32\vssvc.exe
C:\Windows\system32\vssvc.exe
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:4480

Network

DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:27:16 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"6f13c8f52d9582f94669512795c387d9"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
set-cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.904613848.1731202036; Path=/; Domain=github.com; Expires=Mon, 10 Nov 2025 01:27:16 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Mon, 10 Nov 2025 01:27:16 GMT; HttpOnly; Secure; SameSite=Lax
accept-ranges: bytes
x-github-request-id: F77F:2AE9D4:36FDD4:3E308F:67300BF3
GET

https://github.com/Sn8ow/NoEscape.exe_Virus/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Sn8ow/NoEscape.exe_Virus/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:27:17 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F77F:2AE9D4:36FE50:3E3117:67300BF4
GET

https://github.com/Sn8ow/NoEscape.exe_Virus/releases/expanded_assets/1.0.0

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Sn8ow/NoEscape.exe_Virus/releases/expanded_assets/1.0.0 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:27:17 GMT
content-type: application/manifest+json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: F77F:2AE9D4:36FE56:3E3125:67300BF5
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:27:17 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"38f2520c53431c19ae32f3849d17ebb0"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: c56b3d322caaa5d04b8ac20e7eb092f3f0130334ef1920abfcaa224cca8dc221
accept-ranges: bytes
content-length: 1166
x-github-request-id: F77F:2AE9D4:36FE51:3E311B:67300BF5
DNS

avatars.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.109.133

avatars.githubusercontent.com

IN A

185.199.108.133

avatars.githubusercontent.com

IN A

185.199.111.133

avatars.githubusercontent.com

IN A

185.199.110.133
DNS

github.githubassets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.110.154

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.109.154

github.githubassets.com

IN A

185.199.111.154
GET

https://avatars.githubusercontent.com/u/80784394?s=40&v=4

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/80784394?s=40&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "a2f22f4205c92d3ba2c95d1d14b9e939ec7970db2e40f691c3ea656e3284ec6a"
last-modified: Sun, 09 Nov 2014 04:14:49 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 0E13:DCC23:35755:3DDE1:672B7545
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1731202037.643917,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 89983862cddeca80e9f2d4673684acad60d9d8fa
expires: Sun, 10 Nov 2024 01:32:16 GMT
source-age: 300719
vary: Authorization,Accept-Encoding
content-length: 1556
GET

https://objects.githubusercontent.com/github-production-release-asset-2e65be/381404847/aa923980-d8fc-11eb-84a3-1f1e3f022926?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241110%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241110T012818Z&X-Amz-Expires=300&X-Amz-Signature=b2c8e659a95eab663c9cacc925705ccbf7dd812f1a1fde04e90068193c73e8e5&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DNoEscape.exe.zip&response-content-type=application%2Foctet-stream

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /github-production-release-asset-2e65be/381404847/aa923980-d8fc-11eb-84a3-1f1e3f022926?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241110%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241110T012818Z&X-Amz-Expires=300&X-Amz-Signature=b2c8e659a95eab663c9cacc925705ccbf7dd812f1a1fde04e90068193c73e8e5&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DNoEscape.exe.zip&response-content-type=application%2Foctet-stream HTTP/2.0
host: objects.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/octet-stream
last-modified: Tue, 07 Dec 2021 23:55:33 GMT
etag: "0x8D9B9DD0ECF5B2E"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 43fbf04c-b01e-003f-3c31-1329f6000000
x-ms-version: 2023-11-03
x-ms-creation-time: Tue, 17 Aug 2021 22:32:46 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=NoEscape.exe.zip
x-ms-server-encrypted: true
via: 1.1 varnish, 1.1 varnish
fastly-restarts: 1
accept-ranges: bytes
age: 446
date: Sun, 10 Nov 2024 01:28:18 GMT
x-served-by: cache-iad-kiad7000041-IAD, cache-lcy-eglc8600040-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 0
x-timer: S1731202098.109897,VS0,VE79
content-length: 14184365
GET

https://camo.githubusercontent.com/23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=1209600
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/png
expires: Thu, 31 Oct 2024 16:49:43 GMT
last-modified: Thu, 18 May 2017 17:07:03 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: F63B:308DA3:6332DA:79A2A5:67190DE3
accept-ranges: bytes
age: 585923
date: Sun, 10 Nov 2024 01:36:04 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1731202565.781774,VS0,VE1
x-fastly-request-id: 48eb749c4a91e3f41b88e4d638f50b419a98201f
timing-allow-origin: https://github.com
content-length: 298596
GET

https://avatars.githubusercontent.com/u/70485500?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/70485500?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "0f506ea4150a5ffb8fdcf7e92b42a4c2e70ae07b4e19e8cf10dd9ba9e464efc7"
last-modified: Tue, 16 Nov 2021 23:22:17 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: A437:1D2228:57FD9A:6B9270:671F0DB0
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:05 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1731202566.530563,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 87492162da0c5280134a63aa0ae8ac36ee7dd9f4
expires: Sun, 10 Nov 2024 01:41:05 GMT
source-age: 1114195
vary: Authorization,Accept-Encoding
content-length: 1074
GET

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /limiteci/WannaCry/refs/heads/main/WannaCry.EXE HTTP/2.0
host: raw.githubusercontent.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"e6fa3937b67d7b17028511eff8847e3c596ba77c55942378a6dbd947a7561603"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 76C4:271419:456807:551B22:67300E1A
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:28 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1731202588.849391,VS0,VE175
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 451c7af4465815233f4ee9684827281f28b7b67c
expires: Sun, 10 Nov 2024 01:41:28 GMT
source-age: 0
content-length: 3514368
GET

https://avatars.githubusercontent.com/u/73496225?v=4&size=40

msedge.exe

Remote address:

185.199.109.133:443

Request

GET /u/73496225?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "07de4548e83f297b25fa6679a65a63379062e35e5735d66fe2eba0d74939abce"
last-modified: Mon, 25 Jul 2022 21:45:48 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: AE9D:39D97A:71D140:89C18C:67250E41
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:41:14 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1731202874.145035,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: ecab8b6e0c48b63e3d4a2a8514f92110cbc789bf
expires: Sun, 10 Nov 2024 01:46:14 GMT
source-age: 721145
vary: Authorization,Accept-Encoding
content-length: 877
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.107

s3-w.us-east-1.amazonaws.com

IN A

52.217.115.17

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.84

s3-w.us-east-1.amazonaws.com

IN A

52.216.246.12

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.85

s3-w.us-east-1.amazonaws.com

IN A

54.231.235.161

s3-w.us-east-1.amazonaws.com

IN A

3.5.23.250

s3-w.us-east-1.amazonaws.com

IN A

3.5.25.81
GET

https://github.githubassets.com/assets/light-3e154969b9f9.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/light-3e154969b9f9.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 27 Aug 2024 20:36:01 GMT
etag: "0x8DCC6D7DD54695E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1181919
x-served-by: cache-iad-kcgs7200095-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 19009
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fbe3519e1ffd84dd884304242943c1ce5c2e3f67
content-length: 6804
GET

https://github.githubassets.com/assets/dark-9c5b7a476542.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/dark-9c5b7a476542.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 27 Aug 2024 20:35:59 GMT
etag: "0x8DCC6D7DBFA7D4F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1599384
x-served-by: cache-iad-kiad7000157-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 86, 19071
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dc677df93e316ec669085748713763cdaaaa2691
content-length: 6876
GET

https://github.githubassets.com/assets/primer-primitives-4cf0d59ab51a.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-primitives-4cf0d59ab51a.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 01 Oct 2024 15:34:46 GMT
etag: "0x8DCE22E94389022"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1513245
x-served-by: cache-iad-kiad7000069-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 2418
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aa2e7e04fdfa7310091d02ea504e0e59b9bf4558
content-length: 556
GET

https://github.githubassets.com/assets/primer-d4805e363e20.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-d4805e363e20.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 07 Nov 2024 20:35:22 GMT
etag: "0x8DCFF6BB3B1194C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 108080
x-served-by: cache-iad-kiad7000107-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 41, 3204
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cf1e70ee23966427baab25d283dd4acaf9130f0f
content-length: 7282
GET

https://github.githubassets.com/assets/global-79a5b5698a34.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/global-79a5b5698a34.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 07 Nov 2024 12:08:25 GMT
etag: "0x8DCFF24E2285B95"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 215177
x-served-by: cache-iad-kiad7000102-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 6527
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cbeb77ded880576f472e17ef35e554bf6af51680
content-length: 5210
GET

https://github.githubassets.com/assets/github-6110438c1619.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-6110438c1619.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:17 GMT
etag: "0x8DCC5ED35736954"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1155642
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 13947
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f032e765ee8425102ceed27155c01351a9f870d7
content-length: 479
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 03 Sep 2024 18:51:51 GMT
etag: "0x8DCCC497906BD46"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1524589
x-served-by: cache-iad-kiad7000060-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 148, 19206
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0a63c95bdaaa862d11096b35b44a8f63131e49eb
content-length: 1582
GET

https://github.githubassets.com/assets/primer-react.2beab350097eeaad3991.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-react.2beab350097eeaad3991.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 07 Nov 2024 05:52:45 GMT
etag: "0x8DCFEF0670E8E02"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 210741
x-served-by: cache-iad-kcgs7200084-IAD, cache-lcy-eglc8600081-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 7738
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9f2384d5e38df6ab4d1ec41d8c9ab7b734917b17
content-length: 38080
GET

https://github.githubassets.com/assets/releases-d27bae89dc62.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/releases-d27bae89dc62.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 04 Nov 2024 21:22:10 GMT
etag: "0x8DCFD16BE44D1CD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 225017
x-served-by: cache-iad-kiad7000151-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 11, 3110
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 620695a6d096564d9865109b564b3136e7f58ec5
content-length: 39205
GET

https://github.githubassets.com/assets/repository-1e3bbbee6b91.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repository-1e3bbbee6b91.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 04 Nov 2024 12:04:07 GMT
etag: "0x8DCFCC8C8F729F9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 280570
x-served-by: cache-iad-kcgs7200039-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 88, 10313
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: afabacbbef22574243cb3059bcd3f35a3be0b920
content-length: 21273
GET

https://github.githubassets.com/assets/wp-runtime-d1c774376d16.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/wp-runtime-d1c774376d16.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 23 Sep 2024 19:06:40 GMT
etag: "0x8DCDC02DAFFB363"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 2625103
x-served-by: cache-iad-kcgs7200030-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 33, 19401
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 29833ab0de5b30169c608279576a880b4be8963a
content-length: 8031
GET

https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 04 Oct 2024 18:15:49 GMT
etag: "0x8DCE4A09364EC4B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1522645
x-served-by: cache-iad-kcgs7200104-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 19334
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 63a28da9a56227f2b55c442f3f07d28f8190ecf6
content-length: 3079
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 08 Nov 2024 22:59:24 GMT
etag: "0x8DD0048FDA4321F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 91892
x-served-by: cache-iad-kiad7000060-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 2498
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0765de890a3f0dfbaa37f96bf391cb53a2cee789
content-length: 14289
GET

https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-ee0bd6110c34.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-ee0bd6110c34.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 18:58:20 GMT
etag: "0x8DCFD02A6BC85E1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 295764
x-served-by: cache-iad-kjyo7100162-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 10936
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ada9177be48c212a9847d078e4d9f1e7456efb14
content-length: 5773
GET

https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-074ee5faa813.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_failbot_failbot_ts-074ee5faa813.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 08 Nov 2024 18:39:02 GMT
etag: "0x8DD00249DCE6840"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 104128
x-served-by: cache-iad-kcgs7200031-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 57, 3024
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8a6fa5c73231f0f8e5be139023c1038e0315ec05
content-length: 3575
GET

https://github.githubassets.com/assets/environment-cd35650c2e9c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/environment-cd35650c2e9c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 09:39:32 GMT
etag: "0x8DCFF1015B27F9B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 219621
x-served-by: cache-iad-kjyo7100077-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 8431
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 59b1a7343ebe85acf013e8e476f371c3e6ddac87
content-length: 2363
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:31 GMT
etag: "0x8DCD8F8042E40EF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 2216430
x-served-by: cache-iad-kcgs7200136-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 105, 19302
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5668aedf67e80a88b1b2274c331ec338499f16e2
content-length: 5759
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F8D41"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1442396
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 42466, 19114
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4b24ea8f0c738687fd2b79303bc4d47c811132b2
content-length: 3284
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:06 GMT
etag: "0x8DCE312793D8352"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1438157
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 19408
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0b9b33170ff8c6303a1fd2e56ceb044e1185784c
content-length: 6302
GET

https://github.githubassets.com/assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Sep 2024 23:19:54 GMT
etag: "0x8DCD6A61268C08C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 3955598
x-served-by: cache-iad-kcgs7200045-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 29, 19236
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ba30cae6bcb4d7c5f53d181302e7e3fb7e6c6c25
content-length: 4646
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-6afc16-87f32ad5fff1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-6afc16-87f32ad5fff1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 08 Oct 2024 21:28:27 GMT
etag: "0x8DCE7E026275386"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 724146
x-served-by: cache-iad-kiad7000075-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 27, 22576
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0e22ebdb1b0a22c47cd8887a8a5427a6e644ae22
content-length: 5803
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 10 Oct 2024 13:21:02 GMT
etag: "0x8DCE92E6380B39E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 2625740
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 24, 19442
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fdc0c466675e693c4dc6d3b5c95e15e13b7c04bf
content-length: 4310
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:30 GMT
etag: "0x8DCD8F803DFB5F0"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1686637
x-served-by: cache-iad-kjyo7100088-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 103, 19382
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 65e98d0adfe15445e860f17479cade47cb6922cb
content-length: 6483
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-1e3d784c897c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-1e3d784c897c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 13:41:20 GMT
etag: "0x8DCEEB16225DC02"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 295764
x-served-by: cache-iad-kjyo7100092-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 10969
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f71e849f5dac247266e41c6f17505d58d1cc82ba
content-length: 4477
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-af0385-1d5998037c7f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-af0385-1d5998037c7f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 23:21:35 GMT
etag: "0x8DCFF82EC18E522"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 108077
x-served-by: cache-iad-kjyo7100040-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 36, 3144
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2b0b599276b3daa2c7c2d3c0e8e906b52b2550b0
content-length: 20951
GET

https://github.githubassets.com/assets/github-elements-54614839516b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-elements-54614839516b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 05 Nov 2024 20:38:39 GMT
etag: "0x8DCFDD9D4D0FB33"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 225017
x-served-by: cache-iad-kiad7000123-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 3150
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8941cdc5516a4f3abe77e002b6ebcc46e179e65c
content-length: 11162
GET

https://github.githubassets.com/assets/element-registry-403b2ee4138e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/element-registry-403b2ee4138e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12FB424"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1610016
x-served-by: cache-iad-kiad7000173-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 13884, 19197
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 819afc675671b0898065a1d90f4bc7a4faf8750b
content-length: 3911
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 05 Nov 2024 21:05:08 GMT
etag: "0x8DCFDDD87E86CEE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 272269
x-served-by: cache-iad-kjyo7100049-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 70, 2375
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c52c28ff30609f1d9da786a64e92c259d2613eef
content-length: 8290
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Sep 2024 14:50:55 GMT
etag: "0x8DCD403787F634B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1359844
x-served-by: cache-iad-kcgs7200073-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 19363
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 152d0f775982f33a87d6b63598f834f881b5af25
content-length: 4948
GET

https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 25 Sep 2024 16:52:10 GMT
etag: "0x8DCDD8265CA851F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 2193457
x-served-by: cache-iad-kiad7000079-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 100, 19372
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 34880d19389ea6f0355527674515a8bd399b969c
content-length: 3288
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A0C3D76A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1185172
x-served-by: cache-iad-kjyo7100087-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 24801, 19133
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 02bcfcb2d2d868b061cce36ee7fb147235dd051b
content-length: 2385
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:14 GMT
etag: "0x8DCB7D5A13B8DA9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1514132
x-served-by: cache-iad-kjyo7100041-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 5892, 19712
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 95deee8642f02109b2ae11d711a278f8091cc777
content-length: 18641
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F3F7D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1518214
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 22219, 19154
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3546f9bc66b9539d2209a037e2e7b646a98ba6da
content-length: 3816
GET

https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-6f3c4f0189d8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-6f3c4f0189d8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 13:41:20 GMT
etag: "0x8DCEEB16245C35B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 295764
x-served-by: cache-iad-kjyo7100081-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 11041
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 421308941e532c7e50478c873dc444e173575675
content-length: 4362
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:12 GMT
etag: "0x8DCB7D5A07C22CC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1442688
x-served-by: cache-iad-kjyo7100169-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 5653, 19290
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d72729400e95ff1c909a5eeec5498ead2b0a0cf3
content-length: 4852
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-0b5e12-7b36339d5147.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-0b5e12-7b36339d5147.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 08 Oct 2024 21:28:28 GMT
etag: "0x8DCE7E026476195"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 724146
x-served-by: cache-iad-kcgs7200118-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 26, 22841
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ad11886b767ea2b903daacb063072c169a1d5475
content-length: 14593
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-eae9df0dd562.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-eae9df0dd562.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 01 Nov 2024 20:19:42 GMT
etag: "0x8DCFAB28510C2CF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 430876
x-served-by: cache-iad-kcgs7200155-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 67, 16881
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bc4113869b9670cef48ffc0b38be6de921b7dc0a
content-length: 4941
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-18d1c91a7872.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-18d1c91a7872.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 17 Oct 2024 18:11:47 GMT
etag: "0x8DCEED72A6ADB7B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1524881
x-served-by: cache-iad-kcgs7200120-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 59, 16187
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: acf3017981a3eef430f0e93d76a5149e6950c79c
content-length: 4526
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CC2D5FC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1179363
x-served-by: cache-iad-kcgs7200039-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 7132, 16163
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e20eb4a970aa79a12cefa1af700a5a319c2dc370
content-length: 3363
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b0b4fd6f86a5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b0b4fd6f86a5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Sat, 19 Oct 2024 02:54:34 GMT
etag: "0x8DCEFE95C9E5085"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 423792
x-served-by: cache-iad-kiad7000057-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 81, 16773
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 42731e962937bc55edb15885f1f9cc45fdd27c43
content-length: 6100
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-c89801ebbe15.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-c89801ebbe15.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CBF7E60"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1439162
x-served-by: cache-iad-kiad7000021-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 59, 19665
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 66b7befe690b534663bb87c396b577d00daa42ef
content-length: 3082
GET

https://github.githubassets.com/assets/behaviors-009c7396246a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/behaviors-009c7396246a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 13:20:58 GMT
etag: "0x8DCFF2F044FD23D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 196224
x-served-by: cache-iad-kcgs7200135-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 7035
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 815de0e391be90da1fd642a0a2f7b2aa3f5aab37
content-length: 60851
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:12 GMT
etag: "0x8DCB7D5A07BFBE6"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1438157
x-served-by: cache-iad-kiad7000133-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 15704, 19200
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f4acb26dcf7d546cc60a3027e8b2bfb1cd86d74b
content-length: 4125
GET

https://github.githubassets.com/assets/notifications-global-54f34167118d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-global-54f34167118d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 20 Aug 2024 15:46:26 GMT
etag: "0x8DCC12F400738CD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 4027459
x-served-by: cache-iad-kjyo7100129-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 19136
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ef93cc17f2131af6c4fd0d488b6d68f3c1b770fc
content-length: 3038
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:15 GMT
etag: "0x8DCB7D5A25F63A1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1601371
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 7891, 13728
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aa4a3556d8dcd32274bd38cc197d4625bf1a6998
content-length: 3888
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-64905f-7a04a583a48c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-64905f-7a04a583a48c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 17:02:01 GMT
etag: "0x8DCFCF266E93B71"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 295753
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 52, 6906
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a7358fa827492ed5a0f5c3f7af379f4057d1a92b
content-length: 6436
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 24 Oct 2024 02:54:01 GMT
etag: "0x8DCF3D71D8AA7BA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 724127
x-served-by: cache-iad-kcgs7200105-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 59, 12811
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c09d98f86a537fd73b9b291f1bbbffa4c0334b71
content-length: 6340
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--680e8b-2691cc4bbb4c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--680e8b-2691cc4bbb4c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Sep 2024 22:11:30 GMT
etag: "0x8DCD8F803DB004C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 4013692
x-served-by: cache-iad-kiad7000101-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 95, 11228
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: aad9bddae43d5cfa4e06f6b998659e175c36d51c
content-length: 4342
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-043af64042a1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-043af64042a1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 30 Oct 2024 22:53:04 GMT
etag: "0x8DCF9359D0D196D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 804608
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 41, 15831
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6733c83f63b2e94d4b9ac927ce08417051626e4b
content-length: 3323
GET

https://github.githubassets.com/assets/repositories-ac118cd54ac9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repositories-ac118cd54ac9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 01 Nov 2024 17:35:59 GMT
etag: "0x8DCFA9BA5FA71CC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 423763
x-served-by: cache-iad-kjyo7100059-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 77, 9524
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bafc42db6039f5333cb4e2b072c919961302cd2c
content-length: 17916
GET

https://github.githubassets.com/assets/primer-react-ae28f57a594c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-react-ae28f57a594c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 14:16:10 GMT
etag: "0x8DCFCDB3B80649E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 391578
x-served-by: cache-iad-kcgs7200108-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 12, 16940
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 631c6af9310f886f7e7dfd9533c4f1b9bd8db374
content-length: 103803
GET

https://github.githubassets.com/assets/react-core-3a596bf6ecc1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-core-3a596bf6ecc1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 02:26:43 GMT
etag: "0x8DCFED39EBA2203"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 249024
x-served-by: cache-iad-kcgs7200112-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 33, 10591
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ff780f7a2194e977cf444a683e5c87ca923405f1
content-length: 39119
GET

https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-lib-7b7b5264f6c1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:06 GMT
etag: "0x8DCB7D59CFCE0CF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 4029811
x-served-by: cache-iad-kjyo7100029-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 7855, 21298
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 817857d7b96cdc3587f6472fe2d9ec6125bfd521
content-length: 54857
GET

https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/octicons-react-45c3a19dd792.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 06 Nov 2024 15:24:01 GMT
etag: "0x8DCFE770B05945C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 284884
x-served-by: cache-iad-kjyo7100067-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 11388
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7b70ba7cb5b1e8a5ec9fb5ff766bd97c6c803dd7
content-length: 19219
GET

https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-0e630d-04276437489b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-0e630d-04276437489b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:02 GMT
etag: "0x8DCE3127730EEAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1444737
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 21929
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0585034f56664d1b1885111ba448d62e1905eb9e
content-length: 90797
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 05 Nov 2024 21:48:11 GMT
etag: "0x8DCFDE38B596E47"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 284872
x-served-by: cache-iad-kiad7000114-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 7853
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7c4c2c13b532740cb4e43892fcfa0475a9d0ae1a
content-length: 7390
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-c0fd3c9cc896.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu-c0fd3c9cc896.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 04 Oct 2024 18:15:49 GMT
etag: "0x8DCE4A09364EC4B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 2879473
x-served-by: cache-iad-kjyo7100058-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 20410
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ac272196cfbde7de206c5d783574ad180f919114
content-length: 3077
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE312790353D7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 3239190
x-served-by: cache-iad-kiad7000037-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 19200
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6026b7a0b2a15f11d1b7f1b968bb91ef7c07734a
content-length: 5011
GET

https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 07 Oct 2024 20:02:10 GMT
etag: "0x8DCE70AED8CFDAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 1603910
x-served-by: cache-iad-kiad7000084-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 27, 19340
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3573fa046aa9a850a8b7a7b838fb3fef57bfbb31
content-length: 5640
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-cb3d4f30c9ed.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/keyboard-shortcuts-dialog-cb3d4f30c9ed.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 05 Nov 2024 21:48:10 GMT
etag: "0x8DCFDE38AC33419"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 284884
x-served-by: cache-iad-kcgs7200073-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 53, 10549
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0f20e14b95c33410a9c545eabac7f1ba4afa267a
content-length: 3423
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A13028DA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 3443594
x-served-by: cache-iad-kcgs7200022-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 3451, 16492
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 58347047077f3debb6a78232e27d327a9fb080fc
content-length: 5219
GET

https://github.githubassets.com/assets/sessions-c6a512e7180c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/sessions-c6a512e7180c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 29 Oct 2024 14:16:06 GMT
etag: "0x8DCF8243A6C78D8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:16 GMT
age: 789650
x-served-by: cache-iad-kiad7000136-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 39, 17860
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3e74e58da4958d458f2b25435be01e1cd9dedded
content-length: 4112
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-7917d5042068.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-7917d5042068.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: ZA5OR0tS1BbeQsfqNeCw7g==
last-modified: Wed, 14 Aug 2024 19:51:52 GMT
etag: "0x8DCBC9A8B29FF90"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 1599592
x-served-by: cache-iad-kjyo7100141-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 19727, 17712
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be6c32dcdeb6c301eb6cb2ec29511a3084e4acda
content-length: 543
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 21:22:07 GMT
etag: "0x8DCFD16BCAB8C3F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 225018
x-served-by: cache-iad-kjyo7100047-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 11, 2883
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c090c6290acd178f9fca63992b947dc9a76d24f7
content-length: 7701
GET

https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-c17189d94fd6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-c17189d94fd6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 01 Nov 2024 12:53:19 GMT
etag: "0x8DCFA74292DC495"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 295765
x-served-by: cache-iad-kcgs7200082-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 9669
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9843ca64e9288e1e02afa0edaa16057fab4b7865
content-length: 6232
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-638a4cc4ec98.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_paths_index_ts-638a4cc4ec98.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 15:31:42 GMT
etag: "0x8DCFF4147B13A97"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 191904
x-served-by: cache-iad-kcgs7200155-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 55, 6098
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b5c591f577ae5431bc0902fdecbfc573b7a031cb
content-length: 5482
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Sep 2024 14:50:54 GMT
etag: "0x8DCD40378515B21"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 3430302
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 17194
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ddfefb69d67aec84fd006f1f81fbe1f35969fba6
content-length: 7652
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-87c39cb5708f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-87c39cb5708f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 05 Nov 2024 21:44:49 GMT
etag: "0x8DCFDE312B73841"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 196225
x-served-by: cache-iad-kiad7000124-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 23, 6063
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2acb78b9bc9acba57a90d2f372e3f05d7345cb77
content-length: 20446
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-7a151d1da86f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-7a151d1da86f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CC23A71"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 1519617
x-served-by: cache-iad-kcgs7200024-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 64, 17242
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 82b3d1aebbeff971b96aba30f121dfc2521a943f
content-length: 5389
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 13:07:25 GMT
etag: "0x8DCEDE37AF59EA5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 1510810
x-served-by: cache-iad-kcgs7200076-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 18024
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b58d5cd096614a2e475752e06b09cb45227b3f55
content-length: 2941
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 16 Oct 2024 13:07:25 GMT
etag: "0x8DCEDE37AF61357"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 2110729
x-served-by: cache-iad-kcgs7200025-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 17754
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 113339ffab9d7435bc08444049407dffd3bf337e
content-length: 3179
GET

https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-c19ded76330f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-c19ded76330f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 01 Nov 2024 12:53:19 GMT
etag: "0x8DCFA74292DEB78"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 295764
x-served-by: cache-iad-kcgs7200073-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 9661
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 983302d577aaa37d1c924d0586f52dfd41a9fc9c
content-length: 5628
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: VvBwy4NqnxK52DsiAv8DSA==
last-modified: Wed, 14 Aug 2024 19:54:00 GMT
etag: "0x8DCBC9AD72D85A2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 2132436
x-served-by: cache-iad-kcgs7200147-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 1074, 17677
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 024c1e8ee1ac01ad0431497b7d261f527ca42c9a
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: Sl55SYaMImCtL5+l+k36Gw==
last-modified: Wed, 14 Aug 2024 19:53:22 GMT
etag: "0x8DCBC9AC0F88440"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 3440347
x-served-by: cache-iad-kcgs7200110-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 1293, 16941
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 75099e76f59b1c0b2048407c501cbb355d3b6e27
content-length: 9412
GET

https://github.githubassets.com/assets/code-53e56f0305ac.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-53e56f0305ac.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 29 Oct 2024 17:51:14 GMT
etag: "0x8DCF84248506AD8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 714324
x-served-by: cache-iad-kcgs7200155-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 107, 12889
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8473969f086807113c2dda2f21bf3dd59cfc8cf8
content-length: 5170
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-8dd800cdee0e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-8dd800cdee0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 20:35:23 GMT
etag: "0x8DCFF6BB4D1BF8D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 108606
x-served-by: cache-iad-kiad7000061-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 21, 1632
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bde889e80da77d4969fdf7f0017e60fcd59d3603
content-length: 8103
GET

https://github.githubassets.com/assets/codespaces-ff8464347da3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/codespaces-ff8464347da3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 19:42:20 GMT
etag: "0x8DCFD08CBE6CCF2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 257878
x-served-by: cache-iad-kiad7000041-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 43, 5503
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 586ae5dd57d12b55deef351645795feb290798b3
content-length: 7024
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-d241fe700755.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-d241fe700755.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 30 Oct 2024 12:09:30 GMT
etag: "0x8DCF8DBB579CB58"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 837011
x-served-by: cache-iad-kiad7000100-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 12256
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7a9c31c5f8c5f63f11262a80cfff36287c6b9a2e
content-length: 2614
GET

https://github.githubassets.com/assets/code-menu-15796c6acaff.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-menu-15796c6acaff.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 29 Oct 2024 14:16:02 GMT
etag: "0x8DCF824381E90DE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 790189
x-served-by: cache-iad-kiad7000103-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 52, 12668
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fffff45bc2a5fdc2101cb5d852d3bbac51912bac
content-length: 3410
GET

https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 29 Oct 2024 18:53:10 GMT
etag: "0x8DCF84AEF517A9F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 702190
x-served-by: cache-iad-kcgs7200108-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 55, 8758
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 908c65547877ffabd2461487ddaeca802b2ed7aa
content-length: 3413
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-585c05e837f3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-585c05e837f3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:05 GMT
etag: "0x8DCE3127901F5D6"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 1098378
x-served-by: cache-iad-kcgs7200143-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 3183
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c8fe388c035383817fc795e403ed0647447db887
content-length: 4239
GET

https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-e1792bd5a31e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-e1792bd5a31e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 24 Oct 2024 03:21:07 GMT
etag: "0x8DCF3DAE6969363"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 459304
x-served-by: cache-iad-kcgs7200116-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 52, 10098
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 277900c05a4c34075065a6fc5dbc33b61e3de8af
content-length: 4464
GET

https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-7a75d9f22fe9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_ref-selector_RefSelector_tsx-7a75d9f22fe9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 04 Nov 2024 20:24:44 GMT
etag: "0x8DCFD0EB863FBF1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 392105
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 4, 8869
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2cc9633fbedcf53e2fab7fd2cf425fd60bbe4608
content-length: 6221
GET

https://github.githubassets.com/assets/ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_verified-fetch_verified-fetch_ts-u-4672d1-c335d159760f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_verified-fetch_verified-fetch_ts-u-4672d1-c335d159760f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 22 Oct 2024 13:39:05 GMT
etag: "0x8DCF29EE5B2CDB4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 1580985
x-served-by: cache-iad-kjyo7100096-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 12128
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9f2fc93aeaddbd8dcda7f4d2bb849f88c19e12da
content-length: 3055
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-file-page-payload_ts-ui_packages_code-view-shared_comp-1beb66-8434ef8b268d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_code-view-shared_hooks_use-file-page-payload_ts-ui_packages_code-view-shared_comp-1beb66-8434ef8b268d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 06 Nov 2024 17:57:03 GMT
etag: "0x8DCFE8C6BB4D16F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 281090
x-served-by: cache-iad-kcgs7200146-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 54, 3557
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3fcf0bed22025fa7de08b69af2e6fcfaf24797eb
content-length: 12982
GET

https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview.9cc263aa0716ce801059.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 22 Oct 2024 14:40:08 GMT
etag: "0x8DCF2A76D2FB21D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 1580984
x-served-by: cache-iad-kiad7000028-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 9757
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 03c11131957432bab8a2d449d87214c3d41a4df3
content-length: 222
GET

https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-7207c9-945f0bbe7a2f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-7207c9-945f0bbe7a2f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 23:32:58 GMT
etag: "0x8DCFF84832333C4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 177174
x-served-by: cache-iad-kcgs7200082-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 16, 3264
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d27ae6461c20fc688034569c2d04fa489d9ac904
content-length: 22877
GET

https://github.githubassets.com/assets/repos-overview-c95ccf19b9b6.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview-c95ccf19b9b6.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 16:24:22 GMT
etag: "0x8DCFF48A39AB8AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:04 GMT
age: 185933
x-served-by: cache-iad-kiad7000171-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 2, 3326
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e0caca95d9d69803f03b09c04b99d58af885d954
content-length: 9191
GET

https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-e5bc7e52e066.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-e5bc7e52e066.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 07 Nov 2024 16:24:17 GMT
etag: "0x8DCFF48A0BEEABE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:05 GMT
age: 185933
x-served-by: cache-iad-kcgs7200035-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 3080
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7d7c6390ee793d21d78d629727ad64b064741bb1
content-length: 5070
GET

https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: u1QJ1z5yaNOtBvx8hCA+4A==
last-modified: Wed, 14 Aug 2024 19:53:27 GMT
etag: "0x8DCBC9AC4082458"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:05 GMT
age: 1683823
x-served-by: cache-iad-kjyo7100172-IAD, cache-lcy-eglc8600081-LCY
x-cache: HIT, HIT
x-cache-hits: 4219, 2255
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1ac350747044b7045055901af051c1b61e1734e0
content-length: 548
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.108.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.109.133
DNS

28.118.140.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

28.118.140.52.in-addr.arpa

IN PTR

Response
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR

Response
DNS

140.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

140.32.126.40.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

collector.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.112.22
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
content-md5: bYAvaN8MCaSZfP0o7q/Z/w==
last-modified: Wed, 14 Aug 2024 19:18:58 GMT
etag: "0x8DCBC95F2647EDF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 82
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600026-LCY
x-cache: HIT, HIT
x-cache-hits: 199, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2e66f6d049cad8a8ed0e6ee4eb9972f57c9a50a5
content-length: 959
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
content-md5: YDrNCDxuYozaAYS2sPzvIQ==
last-modified: Wed, 14 Aug 2024 19:49:39 GMT
etag: "0x8DCBC9A3C0EF02F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 2232216
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600026-LCY
x-cache: HIT, HIT
x-cache-hits: 381, 5331
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4f6a10ca4f3bbd493696b183e6eb6a419f2bd3d4
content-length: 14426
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-md5: NG4JRxNi8pB1EKMYEhKc0g==
last-modified: Wed, 14 Aug 2024 19:18:46 GMT
etag: "0x8DCBC95EB57AC96"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:27:17 GMT
age: 34
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600026-LCY
x-cache: HIT, HIT
x-cache-hits: 73, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b520847c6da7e07f6bc46b228d567890a8cdeb39
content-length: 958
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 974
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:27:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002259
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: CD01:2B8BDA:573DAA:9241E4:67300BF5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1279
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:27:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003230
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: CD01:2B8BDA:573DAA:9241E5:67300BF5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1335
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:28:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002576
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: CD01:2B8BDA:576228:9281FE:67300BF5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1532
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:28:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002603
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: CD01:2B8BDA:57622F:92820D:67300C31
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1368
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:28:24 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003086
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: CD01:2B8BDA:576682:92898F:67300C31
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 507
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:27:17 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731205637
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E6C7:259ACB:4D3785:545F7D:67300BF5
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 195
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:27:22 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731205642
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: E6C7:259ACB:4D3918:54613A:67300BF5
DNS

133.109.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.109.199.185.in-addr.arpa

IN PTR

Response

133.109.199.185.in-addr.arpa

IN PTR

cdn-185-199-109-133githubcom
DNS

154.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.110.199.185.in-addr.arpa

IN PTR

Response

154.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-154githubcom
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

22.112.82.140.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.112.82.140.in-addr.arpa

IN PTR

Response

22.112.82.140.in-addr.arpa

IN PTR

lb-140-82-112-22-iadgithubcom
DNS

232.168.11.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.168.11.51.in-addr.arpa

IN PTR

Response
DNS

53.210.109.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

53.210.109.20.in-addr.arpa

IN PTR

Response
DNS

198.187.3.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

198.187.3.20.in-addr.arpa

IN PTR

Response
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:28:17 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731205697
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: FBE5:1A514F:1031DB7:116549F:67300C31
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 304
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:28:24 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731205704
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: FBE5:1A514F:1031F1E:1165640:67300C31
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/Sn8ow/NoEscape.exe_Virus/releases/download/1.0.0/NoEscape.exe.zip

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Sn8ow/NoEscape.exe_Virus/releases/download/1.0.0/NoEscape.exe.zip HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sun, 10 Nov 2024 01:28:18 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/381404847/aa923980-d8fc-11eb-84a3-1f1e3f022926?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241110%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241110T012818Z&X-Amz-Expires=300&X-Amz-Signature=b2c8e659a95eab663c9cacc925705ccbf7dd812f1a1fde04e90068193c73e8e5&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DNoEscape.exe.zip&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: EF15:2AE9D4:371634:3E4C5F:67300C31
DNS

objects.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

objects.githubusercontent.com

IN A

Response

objects.githubusercontent.com

IN A

185.199.108.133

objects.githubusercontent.com

IN A

185.199.109.133

objects.githubusercontent.com

IN A

185.199.111.133

objects.githubusercontent.com

IN A

185.199.110.133
GET

https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=543d91bf6ace4f1d91f45cd2c58fd2df&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=b&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=543d91bf6ace4f1d91f45cd2c58fd2df&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 398
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3abe7e492c8a5c914a44a3a85c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-G/PsoEncOzQgsXVgSuYFu1ueCbyaVCNobMS9kjuVKgs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:26 GMT
set-cookie: MUID=3D99D0CD1B4D683C2B49C5FE1A106930; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3D99D0CD1B4D683C2B49C5FE1A106930; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1034BD870A5B60D63E4FA8B40B0661A5; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=30AAA44C6EB546218AF285E3F8D4F8E7&dmnchg=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:26 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1034BD870A5B60D63E4FA8B40B0661A5; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202106.d57f1f7
GET

https://www.bing.com/qbox?query=bo&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=700c9e4b731c4f72b9ff28107abf7c7f&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bo&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=700c9e4b731c4f72b9ff28107abf7c7f&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 418
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3b2d9a4602aefc97473f113cf8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BVVEGtVrItjYscgR7q7DgTf+yxSzI2OuLVSMrUujXzo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:27 GMT
set-cookie: MUID=202EF1E947EE6F0C1330E4DA46D66EA7; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=202EF1E947EE6F0C1330E4DA46D66EA7; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1FBAF0B8C0F96DD136CFE58BC1C16C49; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=03F7437D4C9E47878B289AE3E700B720&dmnchg=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1FBAF0B8C0F96DD136CFE58BC1C16C49; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202107.d57f40f
GET

https://www.bing.com/qbox?query=bon&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=446c7813aba4449abbe89d9375e62a96&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bon&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=446c7813aba4449abbe89d9375e62a96&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 355
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3b474e40f5a29b390db737ff0c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-f7OzvWveeXTAKaw2+LjiXLgVYsrIXR9cR5Wi5X5EEtY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:27 GMT
set-cookie: MUID=05F3502279F161101F614511783B6015; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=05F3502279F161101F614511783B6015; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3325C85C734C62F61393DD6F7286638B; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EC0124ED8DB744928C32B238A22694A3&dmnchg=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3325C85C734C62F61393DD6F7286638B; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202107.d57f511
GET

https://www.bing.com/qbox?query=bonz&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=98fcc3f3deb64a738b1e5613264ecf70&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonz&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=98fcc3f3deb64a738b1e5613264ecf70&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 311
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3b2eb047a38aff562805944a9d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zabDDO/mwrshLVwOpy8kEVwdf4j8Cr/JDIlfWRQEi1g='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:27 GMT
set-cookie: MUID=0804A742173762A03827B27116FA630F; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0804A742173762A03827B27116FA630F; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3FAA10734D24669E148705404CE967CE; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=24875A3901854CAFA07BB226346C40D5&dmnchg=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:27 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3FAA10734D24669E148705404CE967CE; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202107.d57f5dd
GET

https://www.bing.com/qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=0aeb8c2e52c74eb68aca177449ee4695&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=0aeb8c2e52c74eb68aca177449ee4695&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:27:29 GMT
vary: Accept-Encoding
x-eventid: 67300c3df2ee4d62a1cb598603552bc5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cscOH2x2IKzQj2fqcsMAn17bFAZ7TnJ4i6HnRTbsX1o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:28:29 GMT
set-cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57fd39
set-cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:28:29 GMT; Max-Age=7200
GET

https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-sHgI2KF5qU4AQ3xCUQckckSpf+W62hm+BtSCl7vQoVg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57fda4
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-M0xpQtLzzJkj/4vNXa2c0aNVt1kgGjB4BwegH5PfntY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57fdab
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

expires: Wed, 13 Nov 2024 10:20:27 GMT
last-modified: Tue, 24 Sep 2024 06:53:27 GMT
etag: 0x8DCDC6597B401F0
cache-control: public, no-transform, max-age=314577
akamai-grn: 0.85901002.1730968554.c76bdd24
timing-allow-origin: *
content-length: 9310
content-type: image/png
content-md5: GUexVzkiHrDbJxwd2PleRg==
x-ms-request-id: 490b4d38-e01e-005f-1926-15186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57fdcf
GET

https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff08
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:8,%22BC%22:258,%22SE%22:-1,%22TC%22:-1,%22H%22:352,%22BP%22:409,%22CT%22:411,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:8,%22BC%22:258,%22SE%22:-1,%22TC%22:-1,%22H%22:352,%22BP%22:409,%22CT%22:411,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff0c
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 352
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 66d0aeb9eff14638996846eced633f4f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-nL+7SgCJYHRPh4njKktxqZAGdjJ2ET2/tS6dblpE/H0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff35
GET

https://www.bing.com/sa/simg/favicon-trans-bg-444-mg.ico

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /sa/simg/favicon-trans-bg-444-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

expires: Mon, 04 Nov 2024 06:27:16 GMT
last-modified: Tue, 24 Sep 2024 05:54:36 GMT
etag: 0x8DCDC5D5EEF583B
cache-control: public, no-transform, max-age=194783
content-length: 7641
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4PCNB8MnGBDQITkYL2LfHg==
x-ms-request-id: 313a7894-001e-0077-4afb-1d6fd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.bd777b5c.1729199655.123636f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff3a
GET

https://www.bing.com/rp/9JZoMKGwSFpYBOFiek9nl1XTYtg.br.js

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/9JZoMKGwSFpYBOFiek9nl1XTYtg.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Mon, 28 Oct 2024 17:38:12 GMT
vary: Accept-Encoding
x-ms-request-id: 1a957404-f01e-0003-747d-3286ef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20241109T080000Z-1778f98c6575b868hC1DB19zb800000006c0000000003t2q
x-fd-int-roxy-purgeid: 0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 672f1680568642e0a5911422e57ba98f|AFD:672f1680568642e0a5911422e57ba98f|2024-11-09T08:00:00.683Z
content-length: 49115
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff56
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.0.2/js/widget.js?t=241109

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.0.2/js/widget.js?t=241109 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=

Response

HTTP/2.0 200

expires: Wed, 13 Nov 2024 02:33:19 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=374306
akamai-amd-bc-debug: [a=104.86.111.6,b=927486306,c=c,d=1729451215,h=304,k=1,l=0,n=GB_EN_LONDON,o=20940,r=1]
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff5c
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c3d6d7145bf80efd2a74a398d50
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-D+0Auok/U1oVmNVLeXlyol2BFeuSAYqcEFf6spfJw40='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0486A655EC0A48D781966A28345BC9BF Ref B: LON601060102060 Ref C: 2024-11-10T01:28:29Z
date: Sun, 10 Nov 2024 01:28:29 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:29 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ff63
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=898994
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc4
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108963%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108963%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=2038440
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc5
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=372436
expires: Thu, 14 Nov 2024 08:55:46 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10621
x-check-cacheable: YES
cache-control: public, max-age=751289
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc9
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1009
x-check-cacheable: YES
cache-control: public, max-age=4175159
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffcb
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108968%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108969%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108974%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202108976%2C%22Name%22%3A411%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108977%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108980%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108968%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108969%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108974%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202108976%2C%22Name%22%3A411%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108977%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108980%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2fa217ad-901e-0050-1955-19f598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=244200
expires: Tue, 12 Nov 2024 21:18:30 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ffb9
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1052
x-check-cacheable: YES
cache-control: public, max-age=468593
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc6
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d57ffbe
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ffc0
GET

https://th.bing.com/th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ffbf
GET

https://th.bing.com/th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=4fb30e&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=4fb30e&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202109.d57ffc1
GET

https://th.bing.com/th?id=OVP.RLNr1nVhnn4ZK4kAsQDNOAEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.RLNr1nVhnn4ZK4kAsQDNOAEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2150
cache-control: public, max-age=1209581
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d57ffc7
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Bonzi+Buddy+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Bonzi+Buddy+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 905
x-check-cacheable: YES
cache-control: public, max-age=4361502
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d580032
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202109114%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202109114%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1969041
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d580033
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Bonzi+Buddy+Windows+1.0&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Bonzi+Buddy+Windows+1.0&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 799
x-check-cacheable: YES
cache-control: public, max-age=4361480
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d580030
GET

https://th.bing.com/th?q=Bonzi+Buddy+Episodes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Bonzi+Buddy+Episodes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 833
x-check-cacheable: YES
cache-control: public, max-age=4305143
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d580031
GET

https://th.bing.com/th?q=Bonzi+Buddy+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Bonzi+Buddy+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 881
x-check-cacheable: YES
cache-control: public, max-age=4361478
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d58002f
GET

https://th.bing.com/th?q=Bonzi+Buddy+Install&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Bonzi+Buddy+Install&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d58002a
GET

https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1261
cache-control: public, max-age=456069
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800a9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1308
cache-control: public, max-age=1099149
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800ae
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=284a18&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=284a18&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 630
cache-control: public, max-age=1278521
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800af
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 643
cache-control: public, max-age=1598493
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800b4
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 671
cache-control: public, max-age=2133682
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800b0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4738
cache-control: public, max-age=1209554
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800ac
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 508
cache-control: public, max-age=457921
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800ca
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 781
cache-control: public, max-age=454543
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800cd
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=893863
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800d3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1694
cache-control: public, max-age=454019
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800d4
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
cache-control: public, max-age=1969098
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800de
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=007b8e&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=007b8e&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1261
cache-control: public, max-age=454494
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800e3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.bcead17a-c490-4681-b823-c51cee191866&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bcead17a-c490-4681-b823-c51cee191866&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1586
cache-control: public, max-age=1586825
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800ed
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1914
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800d5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=211ef2&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=211ef2&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8789
cache-control: public, max-age=917601
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800f8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.208dc4a0ef00e3e6a38409f16d1ad057&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.208dc4a0ef00e3e6a38409f16d1ad057&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1461
cache-control: public, max-age=2369766
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800fc
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1809
cache-control: public, max-age=2313221
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800fe
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5800f4
GET

https://th.bing.com/th?id=OSK.7c981adf524b78e11bf03e32204fcd68&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.7c981adf524b78e11bf03e32204fcd68&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5800f3
GET

https://th.bing.com/th?id=OSK.WXZ3JiVFggBjqiXHJ8cRlVv46ko8Kg1q-4vag6g79SE&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.WXZ3JiVFggBjqiXHJ8cRlVv46ko8Kg1q-4vag6g79SE&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4738
cache-control: public, max-age=1209564
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5800ea
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2107
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:28:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d580105
GET

https://th.bing.com/th?id=OSK._K-sQ7LWiOXSOYYeqyjGck2G97-mb11n9gHuGGR6elY&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK._K-sQ7LWiOXSOYYeqyjGck2G97-mb11n9gHuGGR6elY&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580131
GET

https://www.bing.com/images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 16041
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3e305445c9a1394797ef59fe37
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-PGzlWPLA0lYG0S0pzYLGrAt5KSGt3uciOWwYunnDlFg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d58012b
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109218%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1083%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202109388%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109218%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1083%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202109388%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580133
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580132
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c3e97da488d91eb10f65694c258
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-epTJeOa/Gm8mGBXZmeLEHyVFlLMQKQBtnIHUBpFEi6s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300c3e97da488d91eb10f65694c258|AFD:67300c3e97da488d91eb10f65694c258|2024-11-10T01:28:30.401Z
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580174
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-length: 324
content-type: text/css
content-encoding: br
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf1c3f11-f01e-0004-34d0-161f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=160785
expires: Mon, 11 Nov 2024 22:08:15 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5801f7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
POST

https://www.bing.com/rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-type: text/css; charset=utf-8
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c7a6c74-e01e-0054-6fe1-20001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 375
cache-control: public, no-transform, max-age=111746
expires: Mon, 11 Nov 2024 08:30:56 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5801fb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 269
content-type: text/css
content-encoding: br
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c783b07-601e-000a-2332-1ff319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=415579
expires: Thu, 14 Nov 2024 20:54:49 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5801f9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-length: 1343
content-type: text/css
content-encoding: br
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2250b94f-801e-0066-1cb7-1958ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=385660
expires: Thu, 14 Nov 2024 12:36:10 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5801fc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 992
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c3e216d46c3af5484b103f53bad
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zdKMx9FzTqdnlCXK87XfT40X1gBHgFdrtUrmXTtkGyg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300c3e216d46c3af5484b103f53bad|AFD:67300c3e216d46c3af5484b103f53bad|2024-11-10T01:28:30.435Z
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:28:30 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5801ae
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c3e784d4471bd0ca012845d1229
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-GJjdn+24Cbg+lrEve7FYEfigg4Zt2zwrL5lbKj7iDAw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0F330801C578498DBFA6C685895CC817 Ref B: LON601060108054 Ref C: 2024-11-10T01:28:30Z
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0E7250EA308466C33E4845D931826792; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5802dd
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 38272
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3eae4640c38148f576419d1e50
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-yS0MmBsDti4/zx72RtQ0F4IeetC3cchYc2UfWJyqLww='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580384
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803d6
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:00 GMT
etag: 0x8DCDC63278E8A10
content-length: 161
content-type: text/css
content-encoding: br
content-md5: vSCYu2PJi4zaHEa/HTJqQQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 13c92c5e-601e-0001-658a-18eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=198184
expires: Tue, 12 Nov 2024 08:31:34 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5803ec
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 304
content-type: text/css
content-encoding: br
content-md5: aYuXeawTQ7TSixrzzSVTgw==
last-modified: Tue, 24 Sep 2024 06:22:32 GMT
etag: 0x8DCDC6145EAD1FD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f054dec5-d01e-003a-4258-17a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=65182
expires: Sun, 10 Nov 2024 19:34:52 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5803f2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:52 GMT
etag: 0x8DCDC61E120C9B5
content-length: 774
content-type: text/css
content-encoding: br
content-md5: ikrF42r74L0bN00bXL6QEA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a1b34331-601e-0028-43f1-179d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=424761
expires: Thu, 14 Nov 2024 23:27:51 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202110.d5803f3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803e8
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300c3eba0f4baca97aab7883e3eb20
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-y6MIXQcDGou7pstiR58lUSU/H+QvyN6ivfwLL1jt9To='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: F5A79D68D78646BF8E52B028120C86E2 Ref B: LON601060102060 Ref C: 2024-11-10T01:28:30Z
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803f8
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 592
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3ed1ee4e42806302747cd99681
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NIU1PU3USn130/8TiUzlLbHHn1WOq4NqZN02m8ilHi4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580399
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 264
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580435
GET

https://r.bing.com/rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3ec1364bd29849ca31497abb67
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-D17hP8T7peIbvz4P2XVjXNeXgmsT18/AUQY+pB7NEG4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803b9
GET

https://r.bing.com/rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580434
GET

https://r.bing.com/rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 554
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3e33e24ac0b430dd8e62a42269
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-kBTFNkRHKvaWd+GMYGvQ41a7ni+NvMG6nyFldk57m1A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803bb
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580440
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 374
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3e97b64a2d83cddb4f0c46d4a3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IJA9/PVSyFevAmaSLbafY+CBY6efXJgnbc26CnYufMw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:30 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803ba
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d580443
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202109425%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109479%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109494%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109516%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109568%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202109726%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202109897%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202109425%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109479%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109494%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109516%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109568%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202109726%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202109897%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 333
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c3ea92b46d7939eeef40ca10ec5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BOjeWqVJ7C80sEKDSGK8g6GyGa4cnqwN9Z5ZhSri1Lo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:31 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202110.d5803b8
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2747
x-check-cacheable: YES
cache-control: public, max-age=2099019
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d58046f
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202110008%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202110008%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1731202110

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7832
x-check-cacheable: YES
cache-control: public, max-age=47294
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d580472
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2503
x-check-cacheable: YES
cache-control: public, max-age=2133674
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d580470
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5391
x-check-cacheable: YES
cache-control: public, max-age=651123
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d580474
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d580466
GET

https://th.bing.com/th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58046d
GET

https://th.bing.com/th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58046c
GET

https://th.bing.com/th?id=OVP.MUQIn59XfE8pl0xdlvXaOgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.MUQIn59XfE8pl0xdlvXaOgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 38041
x-check-cacheable: YES
cache-control: public, max-age=906940
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d580471
GET

https://th.bing.com/th?id=OVP.0AHwvEIpr7yk_qezj-1uxwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.0AHwvEIpr7yk_qezj-1uxwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58047b
GET

https://th.bing.com/th?id=OVP.WPbXcC9fX1ey7Be9XD_6NAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.WPbXcC9fX1ey7Be9XD_6NAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7230
x-check-cacheable: YES
cache-control: public, max-age=993224
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d580473
GET

https://th.bing.com/th?id=OVP.J_WsAalzMtrYKRnSprdONAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.J_WsAalzMtrYKRnSprdONAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58046e
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58047a
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d580479
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c3f452f406ba1536762c9477fea
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5kWXwEHV9zPhS6UVqt1upORc4MKbvUxKG7PRKay98k0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 5E29C0BEA7BD43D4886D7B8344FD8D4D Ref B: LON601060104011 Ref C: 2024-11-10T01:28:31Z
date: Sun, 10 Nov 2024 01:28:31 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:31 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:31 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d580478
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4167
x-check-cacheable: YES
cache-control: public, max-age=979683
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804c5
GET

https://th.bing.com/th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7663
cache-control: public, max-age=826064
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804cd
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.hp9p3JnyZb128i8wuSFh9gEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.hp9p3JnyZb128i8wuSFh9gEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8608
x-check-cacheable: YES
cache-control: public, max-age=1176986
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804cf
GET

https://th.bing.com/th?id=OVP.s_UFiPBD2cIQzUcbi_c9GwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.s_UFiPBD2cIQzUcbi_c9GwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8843
x-check-cacheable: YES
cache-control: public, max-age=1177001
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804d3
GET

https://th.bing.com/th?id=OVP.Q-HgOGZYPJBP3u8MHm3DLwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.Q-HgOGZYPJBP3u8MHm3DLwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9744
x-check-cacheable: YES
cache-control: public, max-age=1177016
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804d8
GET

https://th.bing.com/th?id=OVP.7AiUq8AXJZQdf0nMG-4gsQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.7AiUq8AXJZQdf0nMG-4gsQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2600
x-check-cacheable: YES
cache-control: public, max-age=1506467
date: Sun, 10 Nov 2024 01:28:31 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202111.d5804da
GET

https://th.bing.com/th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=102&h=102&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=102&h=102&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d5804f3
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202110141%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22677.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221840.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110172%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202110141%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22677.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221840.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110172%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 234
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c3fbd4e4434b5cfbdf2719415e7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-OmFvlepMFwHTToVovjAvpfaHkDlyUTaO565SvkP8ZkE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 844C0E4ABF4F45288F735EE8F9E6EF83 Ref B: LON601060104025 Ref C: 2024-11-10T01:28:31Z
date: Sun, 10 Nov 2024 01:28:31 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:31 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202111.d58061a
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c40d85749faacb8ea19011c19ef
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-THwFdhVS2Oia28Bdmx32D8v6wNT7/l65BqPepLVlYIg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202112.d58089e
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300c40eca5409d891d22209a0f3594
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BmFsn1PAwBEcxqslIFHF6KVmQRnQ+BYKWwbf5WD8di0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: C9CFE18E27674B9F87F63850A3C31C99 Ref B: LON601060104011 Ref C: 2024-11-10T01:28:32Z
content-length: 0
date: Sun, 10 Nov 2024 01:28:32 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:32 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202112.d580a60
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=22BF82546CBD4580A22589796FF3608A&ID=SERP,5221.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=22BF82546CBD4580A22589796FF3608A&ID=SERP,5221.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1169
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A835B4BF2338474EB1F6CCD81A675698 Ref B: LON601060104011 Ref C: 2024-11-10T01:28:32Z
date: Sun, 10 Nov 2024 01:28:32 GMT
set-cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:32 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202112.d580c0a
GET

https://www.bing.com/ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 66162473aa2047e0a92185b0141c0ab1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-aQK3WRCUixy4UDnhm+mgovDjMtT6kVVk4k+67HygnKs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 67072A1FA73140C5A028679847215861 Ref B: LON04EDGE0617 Ref C: 2024-04-10T10:51:34Z
date: Sun, 10 Nov 2024 01:28:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202113.d580c4f
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202113.d580c54
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 20736
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202113.d580c92
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 41572
date: Sun, 10 Nov 2024 01:28:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202113.d580d43
GET

https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 54612
date: Sun, 10 Nov 2024 01:28:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202113.d580d48
GET

https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5830e2
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:13,%22SE%22:-1,%22TC%22:-1,%22H%22:121,%22BP%22:128,%22CT%22:129,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:13,%22SE%22:-1,%22TC%22:-1,%22H%22:121,%22BP%22:128,%22CT%22:129,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5830e3
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 351
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c4ab6634ebe815a2183e93a5f45
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-FwuFayDz8SJILPgZQlQOW1/QU1XeONPT1Wd5XXLDFRU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B7A90FA896434C57BE8755DDB581FE59 Ref B: LON601060102040 Ref C: 2024-11-10T01:28:42Z
date: Sun, 10 Nov 2024 01:28:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:42 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:42 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d583131
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58314d
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d583154
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121527%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121527%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58314c
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121530%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121531%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121538%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202121540%2C%22Name%22%3A48%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121541%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121546%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121530%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121531%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121538%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202121540%2C%22Name%22%3A48%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121541%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121546%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58317d
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58317f
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5831ec
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121774%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121774%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58325f
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58325e
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 16039
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4a2c2140c5a6307000c9b9d962
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IxyS++K0mG1PsoAw0fKBg9vIA8hanLsnGBCDYuARvlI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:42 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d58329f
GET

https://www.bing.com/images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5832b6
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121795%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A572%2C%22time%22%3A574%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202121899%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121795%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A572%2C%22time%22%3A574%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202121899%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5832bd
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:42 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5832be
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 773
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c4ae73d421ea5d5825b5ae259ef
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-twPWh1voVUctF0SJ3i4lYUxYfURDU9HyVL6umpN+AxU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300c4ae73d421ea5d5825b5ae259ef|AFD:67300c4ae73d421ea5d5825b5ae259ef|2024-11-10T01:28:42.889Z
date: Sun, 10 Nov 2024 01:28:42 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:28:42 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5832d7
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

content-length: 996
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c4ac8cb49619b47fe249639d7db
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-D1dIjMes9Ic7MyAE8Y42Q4uae7SkH1n0mwMz0d/EG20='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300c4ac8cb49619b47fe249639d7db|AFD:67300c4ac8cb49619b47fe249639d7db|2024-11-10T01:28:42.922Z
date: Sun, 10 Nov 2024 01:28:42 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:28:42 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:28:42 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d5832fb
POST

https://www.bing.com/rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 163
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:30.4503484+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-11-10
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c4b33c240fbaedf5f61d7b2a96c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-x7Q1qNdeJ7VYgn9yNTfmG46L8D8LpjAzOS1xiq2kaTk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 1EB4F889D10D4D78A24C02955DAABF90 Ref B: LON601060104011 Ref C: 2024-11-10T01:28:43Z
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2CC9589CDF2860042EE74DAFDEB76169; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202122.d583344
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 38277
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4b2936424db8246dbd316b4914
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+QmI0Q9LChUz3oWhWcBG+R8XVJCBoSkyAtZO9JbOYOo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583489
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d5834a9
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 592
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4bc92a48b3932291b256bff537
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pOi1LOEZzSVuRZ4GfOEXNN/d29IZVuNV7KtHyvf1KsU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583496
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 333
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4b8f4f4302a1f3fd15c0b7b324
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8r57vxkEmgh+qqwFLOTMkgXvNrH/1DXNiXURxRW64x0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583499
GET

https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4b052446cb8da5e0da1f4e8dd1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Q/aPUeeKnvtb475VlsTJYzh/0cKTeenbYx2pT+BRL54='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58349a
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 554
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4b27704619b5eba4704d7d4031
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-EOPo366+ZWSxgcZEmEcJnSIeOYaOCLtbCt0lzRt30yw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58349c
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 374
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300c4b22a9423e9231f54af48d49aa
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BsXGBHSjEQK/bBW2Rr4FZjtUku3Vi6P8PY5KUBViSCE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58349b
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300c4b46d44b978c5daef567effa79
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-v013mdY65INAw/g6XPBRI9RWXBrAKb8JWr7sVMQX8rw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 80D7A95AD99B4A1A9822957DC49E0FD1 Ref B: LON601060106062 Ref C: 2024-11-10T01:28:43Z
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d5834cb
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583502
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583501
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583510
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583516
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202121919%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121992%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122011%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122048%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202122230%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202122382%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202121919%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121992%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122011%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122048%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202122230%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202122382%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583526
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58353e
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202122507%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202122507%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58353d
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583546
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583545
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58354f
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58356a
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58356e
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c4bc8a24be597ec030aa2ea5f56
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-P6cvYqOEeONhHOVRE2cHnHsNcES7cbPXZvZbIGNjf3I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7DC788D6244646289A90622D2A5CF113 Ref B: LON601060108054 Ref C: 2024-11-10T01:28:43Z
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843; domain=.bing.com; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583569
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122557%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122557%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012831
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:43 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d58359c
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202122619%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22218%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221294%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122654%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202122619%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22218%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221294%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122654%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 237
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300c4b9c6444d8925638c020d85200
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-S5qvbFyVveY8/7guTJVQW0RPKmZUnkh1XdtuKHnnbj0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B03D46394CEB4FDB8021FBA303787998 Ref B: LON601060104011 Ref C: 2024-11-10T01:28:43Z
date: Sun, 10 Nov 2024 01:28:43 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:28:43 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202123.d583605
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202124.d58382f
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19660
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300c4cf4ea4ad6a1044e93ce92ce8b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-nFoNy8oCnz7YIbiX3x/EpzhUWGFn+HL+zM31bLh5kaY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:28:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202124.d583971
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: ipv6=hit=1731205711148&t=4
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d5850b6
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 666
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d5850b3
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d5850f9
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129414%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129414%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d58514a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 667
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d585152
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d585157
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129468%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129468%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d58514c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1850
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:28:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202130.d58515d
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 279
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300caa6bd44b379865f22690847815
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0s3Ts3z4nCrZkq+NYong+97NIQODxwlfdWFtTAXfVIo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2456077867E36AE21F8B124B66026B30; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202218.d59e076
GET

https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&oit=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&oit=0 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cb8e3974bbba1f2fe586d4b5ad0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AD0NFMnIDn6u2hL5xUtnFuHgFx/YX+czuiBfJh20uzo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:32 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1E6FD4CA846C63311C0FC1F985A76217; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:32 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202232.d5a1d5f
GET

https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=7b32a85e133e4be3bf6bc5eca4404642&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=7b32a85e133e4be3bf6bc5eca4404642&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 435
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cb9c5544463aa53cf65fc129a17
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Vt/cD6gUq8NOawNDje+XnxKN4XNQkRCbeHw906Wa/lU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=19B081A2E7EE6E1E011C9491E6176F4A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202233.d5a23bd
GET

https://www.bing.com/qbox?query=m%2Ca&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=9c6d8a2800654ee69a0ad505e55198ad&oit=4&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=m%2Ca&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=9c6d8a2800654ee69a0ad505e55198ad&oit=4&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 423
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cba0802456a84cff7db871d6bba
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cpYFa0oOJugHVwcujZ4OsMN5DghI66WY3LCVsB1pqjE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0850BB214A32627A2BCCAE124B516382; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202234.d5a272e
GET

https://www.bing.com/qbox?query=m%2C&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8a3e7741725f41d88b5bb5a19e7b87e9&oit=4&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=m%2C&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8a3e7741725f41d88b5bb5a19e7b87e9&oit=4&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 391
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cba38d9445aaf96337d3fe10467
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AWJkGH5o3uBJcE2UFtLtLJpIAo0D32HIoqAR1Zccjis='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0425D6FBA1706FBB3442C3C8A0C36E72; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202234.d5a285c
GET

https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=62241c19735c49debe72bb07ac4258e1&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=62241c19735c49debe72bb07ac4258e1&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 387
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbac4e04d19a7a242a50c5d8f56
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AbPBEH+KrCA2NzoqAhclmdLRHFg+M5Kc6zV6CGvVtrg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=16DD963650D1685704698305511E6929; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202234.d5a28e8
GET

https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8d869af1c919431fb48015f167c99b61&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8d869af1c919431fb48015f167c99b61&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:29:35 GMT
vary: Accept-Encoding
x-eventid: 67300cbba7c54c6f82c0703ca9ef48c8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0+ASK6fLqy9qnFogTy1yVsoeNaAhdTqd9bClPlFNBvw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:30:35 GMT
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202235.d5a2ec5
set-cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:30:35 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=ma&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=ab5321c89ace4cfa8d234bffa4bc8784&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=ma&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=ab5321c89ace4cfa8d234bffa4bc8784&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 800
cache-control: public, max-age=1233894
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a30d5
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=mal&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=055afa88d2f3480fa2ac646b6c028468&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=mal&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=055afa88d2f3480fa2ac646b6c028468&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a315c
GET

https://www.bing.com/qbox?query=malw&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=484bacb595fb44dd9fef49fd00220cd3&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=malw&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=484bacb595fb44dd9fef49fd00220cd3&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3162
GET

https://www.bing.com/qbox?query=malwa&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=b0bf9ff67c8941ae91483316f0cf928a&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=malwa&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=b0bf9ff67c8941ae91483316f0cf928a&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 765
cache-control: public, max-age=1973083
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31f6
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=e400cc4c44094a748461dcbd80e038c4&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=malwar&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=e400cc4c44094a748461dcbd80e038c4&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1702
cache-control: public, max-age=992422
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31f7
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=bc4ce0b40a7e456dbbfb190ca5331d7d&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=malware&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=bc4ce0b40a7e456dbbfb190ca5331d7d&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1730
cache-control: public, max-age=1838496
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31fd
x-check-cacheable: YES
GET

https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 554
cache-control: public, max-age=1944051
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31fe
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSAAS.583A4DD495EACA405FE3CC0E5910887B&w=72&h=72&c=17&rs=1&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSAAS.583A4DD495EACA405FE3CC0E5910887B&w=72&h=72&c=17&rs=1&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1125
cache-control: public, max-age=1143912
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31fc
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:29,%22BC%22:113,%22SE%22:-1,%22TC%22:-1,%22H%22:245,%22BP%22:262,%22CT%22:263,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,4749,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:29,%22BC%22:113,%22SE%22:-1,%22TC%22:-1,%22H%22:245,%22BP%22:262,%22CT%22:263,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,4749,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 857
cache-control: public, max-age=927323
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a31ff
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 380
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a31f4
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202235529%2C%22Name%22%3A1226%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235530%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235532%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202235529%2C%22Name%22%3A1226%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235530%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235532%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3202
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235533%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235533%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a31f5
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=18&h=18&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=18&h=18&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969225
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3264
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=80&h=80&r=0&o=6&cb=B&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=80&h=80&r=0&o=6&cb=B&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969130
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3266
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.7d3063c3-cd17-4792-8d4f-4e98c892a389&w=32&h=32&o=6&cb=s1&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.7d3063c3-cd17-4792-8d4f-4e98c892a389&w=32&h=32&o=6&cb=s1&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 877
cache-control: public, max-age=2114062
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3263
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.2c4a26df-86f7-4b62-8221-97f8afb20165&w=32&h=32&o=6&cb=s2&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.2c4a26df-86f7-4b62-8221-97f8afb20165&w=32&h=32&o=6&cb=s2&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969526
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3276
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f176c120-c989-4954-89d5-7e700c6badfd&w=32&h=32&o=6&cb=s3&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f176c120-c989-4954-89d5-7e700c6badfd&w=32&h=32&o=6&cb=s3&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2358
cache-control: public, max-age=1209558
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3265
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=15&h=15&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=15&h=15&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969728
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3286
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1280
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3272
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f530a571-80cd-4a14-ac38-29d912f8e412&w=15&h=15&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f530a571-80cd-4a14-ac38-29d912f8e412&w=15&h=15&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7385
x-check-cacheable: YES
cache-control: public, max-age=983375
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3294
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1280
cache-control: public, max-age=1209579
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3283
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=fa0458&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=fa0458&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1280
cache-control: public, max-age=1209567
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3287
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9969
cache-control: public, max-age=556493
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32b3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=45ae33&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=45ae33&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9054
x-check-cacheable: YES
cache-control: public, max-age=716994
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32b6
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10410
x-check-cacheable: YES
cache-control: public, max-age=644501
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32c6
GET

https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=2ac0e2&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=2ac0e2&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5736
cache-control: public, max-age=826793
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32d0
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8218
cache-control: public, max-age=427163
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32cf
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=5a3214&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=5a3214&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5950
x-check-cacheable: YES
cache-control: public, max-age=414816
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32e4
GET

https://th.bing.com/th?id=OVP.6xlvWhoOL8FLZ1oalqMzwgEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.6xlvWhoOL8FLZ1oalqMzwgEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7672
cache-control: public, max-age=856889
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32ef
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.dmAYSHM8pXHS2U1BJU6u5QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.dmAYSHM8pXHS2U1BJU6u5QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8032
x-check-cacheable: YES
cache-control: public, max-age=993971
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a32fa
GET

https://th.bing.com/th?id=OVP.HMRh95fdXpat0hgQ0DVk5QEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.HMRh95fdXpat0hgQ0DVk5QEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 777
x-check-cacheable: YES
cache-control: public, max-age=3652774
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3314
GET

https://th.bing.com/th?id=OVP.VHqt6QGZNpW6LWIgpYjLNgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.VHqt6QGZNpW6LWIgpYjLNgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 662
x-check-cacheable: YES
cache-control: public, max-age=3652854
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3315
GET

https://th.bing.com/th?id=OVP.03oKR7v6xcgAVuTgGbXQBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.03oKR7v6xcgAVuTgGbXQBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 727
x-check-cacheable: YES
cache-control: public, max-age=3652933
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3318
GET

https://th.bing.com/th?id=OVP.g4gsJBI7G3AnZJ7OLdItbwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.g4gsJBI7G3AnZJ7OLdItbwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 610
cache-control: public, max-age=3652845
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3322
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.Mx1Wn0NCCjROrif2HnAkZAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.Mx1Wn0NCCjROrif2HnAkZAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 632
x-check-cacheable: YES
cache-control: public, max-age=3653043
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3321
GET

https://th.bing.com/th?id=OVP.pUm-W-TdreDGfJuApi1zBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.pUm-W-TdreDGfJuApi1zBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969323
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3339
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.2fNLvznximFdT9KUGlIZzAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.2fNLvznximFdT9KUGlIZzAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3341
GET

https://th.bing.com/th?q=Malwarebytes+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Malwarebytes+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1968981
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a335d
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Malwarebytes+Account&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Malwarebytes+Account&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1970019
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3369
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Activate+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Activate+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1107
x-check-cacheable: YES
cache-control: public, max-age=2244879
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3366
GET

https://th.bing.com/th?q=Installer+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Installer+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
x-check-cacheable: YES
cache-control: public, max-age=1969814
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a336a
GET

https://th.bing.com/th?q=Malwarebytes+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Malwarebytes+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3352
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2358
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3356
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1021
cache-control: public, max-age=554336
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3385
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1048
cache-control: public, max-age=2110389
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a338c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=87df46&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=87df46&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1480
cache-control: public, max-age=2119873
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a338e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 16041
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbc9699428bb46ae9883ed3120d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-z4fIr1iVkkVAopFwS/DGdqjNMOha2JVAXCgveuzi2V4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:36 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:36 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a337a
GET

https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=93c0f9&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=93c0f9&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1280
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a335e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c3176290-6dc1-48fc-8ea9-0a2babae1285&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.c3176290-6dc1-48fc-8ea9-0a2babae1285&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1752
cache-control: public, max-age=1962465
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a339c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cbc41654f1ba26414afb363883a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-MAs+I5f1LTB4+hPmdfws+fzW4avOaCmTtcdp6dU3nJU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cbc41654f1ba26414afb363883a|AFD:67300cbc41654f1ba26414afb363883a|2024-11-10T01:30:36.949Z
date: Sun, 10 Nov 2024 01:30:36 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3384
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2358
cache-control: public, max-age=1209564
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a3382
x-check-cacheable: YES
GET

https://www.bing.com/images/sbi?mmasync=1&ig=75942335FD9A46AD8439A87D46E15FA0&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=75942335FD9A46AD8439A87D46E15FA0&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1465
cache-control: public, max-age=1492658
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a339e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=c4659d&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=c4659d&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3399
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=75942335FD9A46AD8439A87D46E15FA0

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=75942335FD9A46AD8439A87D46E15FA0 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1391
cache-control: public, max-age=626338
date: Sun, 10 Nov 2024 01:30:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202236.d5a33a6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.1cd0a84e-cbe5-4e80-a52d-25f570b5425e&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.1cd0a84e-cbe5-4e80-a52d-25f570b5425e&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a3395
GET

https://th.bing.com/th?id=ODLS.9ad225cc-519c-4d9d-821a-dc9f812443bf&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.9ad225cc-519c-4d9d-821a-dc9f812443bf&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a339b
GET

https://th.bing.com/th?id=ODLS.56527359-f07a-4ea8-9404-eeeef9bf36a1&w=20&h=20&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.56527359-f07a-4ea8-9404-eeeef9bf36a1&w=20&h=20&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a339a
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235534%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235554%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235562%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235534%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235554%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235562%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 997
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cbcf1f14403b90240ac119b9e2e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0NAPWhel5QL0e6smUqUHJTvJrbpDBQ0sijF9S+mLGoE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cbcf1f14403b90240ac119b9e2e|AFD:67300cbcf1f14403b90240ac119b9e2e|2024-11-10T01:30:36.997Z
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:30:37 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202236.d5a33a5
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1869%2C%22time%22%3A1872%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202236007%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1869%2C%22time%22%3A1872%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202236007%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a34a5
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1874%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236009%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1874%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236009%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

expires: Sun, 10 Nov 2024 03:37:18 GMT
last-modified: Tue, 24 Sep 2024 07:03:10 GMT
etag: 0x8DCDC66F3647E2D
cache-control: public, no-transform, max-age=33486
content-length: 763
content-type: image/png
content-md5: n4UJiOYHnssveuz4xme87A==
x-ms-request-id: 725356a6-301e-0012-5db1-1cde8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1728781481.299e0c48
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a34c0
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1875%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236010%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1875%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236010%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a34cc
GET

https://th.bing.com/th?id=OSK.8334552b6adba8251c9759a7b0a81d7f&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.8334552b6adba8251c9759a7b0a81d7f&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a34d2
GET

https://th.bing.com/th?id=OSK.dd1c27f1c924d675df8a6e0773e91c88&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.dd1c27f1c924d675df8a6e0773e91c88&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a353e
POST

https://www.bing.com/rewardsapp/reportActivity?IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.5064&q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.5064&q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 164
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a3558
GET

https://th.bing.com/th?id=OSK.58526e4d858ad530b534a0eae0c57147&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.58526e4d858ad530b534a0eae0c57147&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:28:42.9399917+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=6&RB=0&GB=0&RG=200&RP=3
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHS=PC=U531
cookie: bm_sv=2497E1D923BDF661A8811A1232482D6A~YAAQp3d7XGEVzAmTAQAATb6xExl5IAB97AwX16wcPRnv2+x5Ryyy5X7/O7GSrOX1vweJhJQofLPxlMEJwKWYIRUw2Bv2RFjLGa4uxRgA2W7nDU/Qgm1btaArbOBCEXX0iDyE+AJWnvySqwxlo7Nc+OI4ZDlcCzsKj4SkwMXnWrFlsbo60cjByl0NX9FCjORXXHjdr+mfcVirwugbuAJqoN8WMiHYPM+DG04h9HXT6EywMFnV7QhSVn2tUHm05Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 38276
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbd11a14426a04936e380f41579
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-16qSGrJWw6YZga6FGkwTbOwoGhkWWXzkk5EkwXE4Aq8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35a4
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236127%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A0%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A1072%2C%22ARElementHeight%22%3A463%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225158%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A648%2C%22ARElementHeight%22%3A424%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A1%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A536%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236127%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A0%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A1072%2C%22ARElementHeight%22%3A463%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225158%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A648%2C%22ARElementHeight%22%3A424%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A1%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A536%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35f6
GET

https://www.bing.com/rp/qZeFzs7d4zbqMjvSUX0ww-DN1bY.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/qZeFzs7d4zbqMjvSUX0ww-DN1bY.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35f7
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35fe
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2664
cache-control: public, max-age=810075
date: Sun, 10 Nov 2024 01:30:37 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202237.d5a363f
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 17815
x-check-cacheable: YES
cache-control: public, max-age=2448127
date: Sun, 10 Nov 2024 01:30:37 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202237.d5a3640
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/x-icon
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 318
x-check-cacheable: YES
cache-control: public, max-age=1769126
date: Sun, 10 Nov 2024 01:30:37 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202237.d5a3641
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=75942335FD9A46AD8439A87D46E15FA0&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=75942335FD9A46AD8439A87D46E15FA0&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 999
cache-control: public, max-age=2573354
date: Sun, 10 Nov 2024 01:30:37 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202237.d5a3642
x-check-cacheable: YES
GET

https://www.bing.com/videos/vdasync?f=ch&mid=8349C6C097A35BE18D9F8349C6C097A35BE18D9F&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=8349C6C097A35BE18D9F8349C6C097A35BE18D9F&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1287
x-check-cacheable: YES
cache-control: public, max-age=2477739
date: Sun, 10 Nov 2024 01:30:37 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202237.d5a3643
GET

https://www.bing.com/videos/vdasync?f=ch&mid=B695AB5D9E22E4E53EB2B695AB5D9E22E4E53EB2&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=B695AB5D9E22E4E53EB2B695AB5D9E22E4E53EB2&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a3624
GET

https://www.bing.com/videos/vdasync?f=ch&mid=890C4F1541A27D70CB60890C4F1541A27D70CB60&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=890C4F1541A27D70CB60890C4F1541A27D70CB60&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a3636
GET

https://www.bing.com/videos/vdasync?f=ch&mid=99910497FE2AB9C7B16599910497FE2AB9C7B165&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=99910497FE2AB9C7B16599910497FE2AB9C7B165&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a363e
GET

https://www.bing.com/videos/vdasync?f=ch&mid=8634F2341C6AE92172748634F2341C6AE9217274&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=8634F2341C6AE92172748634F2341C6AE9217274&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a3644
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a363d
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a364b
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a364c
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22ARElementIndex%22%3A2%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A312%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A3%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A1008%2C%22ARElementWidth%22%3A200%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Afalse%2C%22ARElementKValue%22%3A%225160%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A0%2C%22AnswerCardKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A1%2C%22AnswerCardKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A2%2C%22AnswerCardKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202236313%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202236440%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22ARElementIndex%22%3A2%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A312%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A3%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A1008%2C%22ARElementWidth%22%3A200%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Afalse%2C%22ARElementKValue%22%3A%225160%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A0%2C%22AnswerCardKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A1%2C%22AnswerCardKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A2%2C%22AnswerCardKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202236313%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202236440%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cbdde24496e8cab673282f9c6ef
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-v6TDvWOuGrmYBBcVxDOv+iKp1DgaUSpaPAh5w8RpFEc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 782CFAE95B02435997B7F76EF7BDA251 Ref B: LON601060101042 Ref C: 2024-11-10T01:30:37Z
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a364d
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 492
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbd9ec14564ba247e5515e67282
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-A5xpgkN1cXZSrjq4t7yf/agWKWreAo4jxugO3Z0jydM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35b7
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 574
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbdf6d240e29951f13bd5254e8c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SGQOKZVaJy2zDZrP3CfnwJcAt2lqMbrAvMa9Pdd33AA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35cf
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300cbdeb2f4c6581bec841c75cb5e0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-D+PllkIVW6x7o7MlUE++OIwy2fpmI5BGcVTq35SDiyw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B8DF6AB1957C463AB207F90D6532C168 Ref B: LON601060104054 Ref C: 2024-11-10T01:30:37Z
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a3668
GET

https://th.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 379
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbd9f414987814b3e95ba59c3f5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-FazYansr4CmAy2+qV85AaY2izrcEUv1r/mMsyq5MJIA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35d0
GET

https://th.bing.com/th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=300&h=186&c=14&rs=2&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=300&h=186&c=14&rs=2&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 564
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbd494c483a87d31be0ce314a60
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Q0IjXr+pl0A0JyQmzVdgf5AaDRNbcbbFNSqPQul/ZMc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35d2
GET

https://th.bing.com/th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 468
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbd0bce469b96a77a7c8e2a9e7a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-4kfvILPR3hAe9DHk4sh1fHflvZmHk7XTflVMFOLVL8U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:37 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a35d1
GET

https://th.bing.com/th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=30&h=30&c=14&rs=1&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202237.d5a36c4
GET

https://th.bing.com/th?id=OVFT.H22wfnLaMts7jaIaKAIItS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT.H22wfnLaMts7jaIaKAIItS&pid=News&w=30&h=30&c=14&rs=1&qlt=90 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:38 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202238.d5a3bde
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 682
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cbf11044a69bfcdc8e449659167
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-T+bOt9rzpmBa23FFjCAiy8YFL0ejnvYGQDhAnnq6/Dg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:39 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202239.d5a3f7d
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5352
date: Sun, 10 Nov 2024 01:30:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202239.d5a3fdb
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202239.d5a4032
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202239.d5a4094
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=75942335FD9A46AD8439A87D46E15FA0

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=75942335FD9A46AD8439A87D46E15FA0 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110012843
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236

Response

HTTP/2.0 200

content-length: 1517
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc009e9471281ac637e182f6459
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SgbYYy/BDaTAo9ntXwP+qr8mggWMVXvk/08a/4tL6L4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a43fe
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221426.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222431.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221426.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222431.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202236
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1049
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44d8
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 22781
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1935
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44db
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malwarebytes&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malwarebytes&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1002
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44e1
GET

https://www.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/x-icon
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 318
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44cd
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2567
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44ce
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202236597%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202236834%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202238370%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22AsResponseLength%22%3A%22682%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202238441%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%2Cig%3AA716A8B70EDC4EC8B3F8F7A744679E3C%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202238473%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202236597%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202236834%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202238370%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22AsResponseLength%22%3A%22682%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202238441%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%2Cig%3AA716A8B70EDC4EC8B3F8F7A744679E3C%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202238473%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/x-icon
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 152126
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44d1
GET

https://www.bing.com/news/NewsAnswerV2CarouselAjax?q=Malwarebytes&width=608&nccl=Lite&IG=75942335FD9A46AD8439A87D46E15FA0&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /news/NewsAnswerV2CarouselAjax?q=Malwarebytes&width=608&nccl=Lite&IG=75942335FD9A46AD8439A87D46E15FA0&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2188
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44d5
GET

https://www.bing.com/th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3302
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44de
GET

https://www.bing.com/th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3685
date: Sun, 10 Nov 2024 01:30:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202240.d5a44c9
GET

https://www.bing.com/th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202241.d5a4ae5
GET

https://www.bing.com/th?id=ODF.WZt6rH4kWHVsV4OxW0h-hQ&pid=news&w=16&h=16&c=14&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODF.WZt6rH4kWHVsV4OxW0h-hQ&pid=news&w=16&h=16&c=14&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a58f1
GET

https://www.bing.com/th?id=OVFT.owsFqaM8pz4YOlug7C8pni&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT.owsFqaM8pz4YOlug7C8pni&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-length: 693
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc520d14e339b19b39f533d4d76
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hQOV2DZ2HHz7vNwZIIz/UYU0ZUtOP5wDVvcDJedSBtk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:45 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a58ee
GET

https://www.bing.com/th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 16100
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a592b
GET

https://www.bing.com/th?id=OJ.ykmRPkks0lGk5A&pid=news&w=75&h=12&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OJ.ykmRPkks0lGk5A&pid=news&w=75&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a5a23
GET

https://www.bing.com/th?id=OVFT.Vo_9EyHg48lZ-b2a5eTOUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVFT.Vo_9EyHg48lZ-b2a5eTOUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a5a22
GET

https://www.bing.com/th?id=OJ.iqcBQ1sGmNZPlQ&pid=news&w=61&h=12&rs=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OJ.iqcBQ1sGmNZPlQ&pid=news&w=61&h=12&rs=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:29:45 GMT
vary: Accept-Encoding
x-eventid: 67300cc5cfe24ad5960c6fcc8c07086c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UQdLQEO/gKeZi8D26fVrt3XSZJINYiBGg71ejSXAc/o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a5a2e
set-cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:30:45 GMT; Max-Age=7200; Secure
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1437
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a5a71
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malware&cp=7&csr=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malware&cp=7&csr=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202245.d5a5a7f
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202244594%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A10462%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202244594%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A10462%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5c1e
GET

https://www.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5c21
POST

https://www.bing.com/fd/ls/ls.gif?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202244918}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202244918}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 967
cache-control: public, max-age=1969806
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c85
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202244679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%2Cig%3A898268B3B14D42B2957DAC1338628453%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202244680%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202244679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%2Cig%3A898268B3B14D42B2957DAC1338628453%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202244680%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 698
cache-control: public, max-age=1804091
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c87
x-check-cacheable: YES
GET

https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7765
cache-control: public, max-age=373997
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c88
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1744
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 963
x-check-cacheable: YES
cache-control: public, max-age=4351808
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c8a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 272
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 756
x-check-cacheable: YES
cache-control: public, max-age=3678825
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c89
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 725
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 55469
x-check-cacheable: YES
cache-control: public, max-age=993042
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5c86
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5c82
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 384
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5c84
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:439,%22BP%22:450,%22CT%22:457,%22IL%22:14},%22ad%22:[-1,-1,1263,609,1263,4516,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:439,%22BP%22:450,%22CT%22:457,%22IL%22:14},%22ad%22:[-1,-1,1263,609,1263,4516,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4749&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5c90
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%226.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A471%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%226.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A471%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 865
x-check-cacheable: YES
cache-control: public, max-age=4698891
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cbf
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=2469129
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cc6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3606
x-check-cacheable: YES
cache-control: public, max-age=2447982
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cc7
GET

https://th.bing.com/th?id=OIP.Q8KiAyNGwlT_Ai6RQQqLGQHaFA&w=298&h=201&c=10&rs=1&qlt=99&bgcl=fffffe&r=0&o=6&pid=MultiSMRSV2Source

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.Q8KiAyNGwlT_Ai6RQQqLGQHaFA&w=298&h=201&c=10&rs=1&qlt=99&bgcl=fffffe&r=0&o=6&pid=MultiSMRSV2Source HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 706
cache-control: public, max-age=1499078
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cc8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OADD2.8589956500910_1IR2EUFV19G3V452CZ&w=32&h=32&o=6&pid=21.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OADD2.8589956500910_1IR2EUFV19G3V452CZ&w=32&h=32&o=6&pid=21.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 740
x-check-cacheable: YES
cache-control: public, max-age=4698770
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cbe
GET

https://th.bing.com/th?id=OVP.bFI9ruhVpPMffbB6v5YzeAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.bFI9ruhVpPMffbB6v5YzeAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 740
x-check-cacheable: YES
cache-control: public, max-age=3678828
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cbd
GET

https://th.bing.com/th?q=Free+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Free+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3785
cache-control: public, max-age=1793212
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cd7
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Types+of+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Types+of+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/gif
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 142
cache-control: public, max-age=1947253
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cdb
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3285
cache-control: public, max-age=2553132
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cde
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Malware+Uninstaller&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Malware+Uninstaller&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4021
cache-control: public, max-age=364393
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cdc
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Malware+Removal&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Malware+Removal&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 521
cache-control: public, max-age=480712
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cea
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Windows+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Windows+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3677
x-check-cacheable: YES
cache-control: public, max-age=2112593
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5ce9
GET

https://th.bing.com/th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 400
cache-control: public, max-age=751382
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d01
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ORMS.45ab53c0c25cb179d7faeed11d4eaefb&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ORMS.45ab53c0c25cb179d7faeed11d4eaefb&w=197&h=113&c=6&rs=2&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5230
x-check-cacheable: YES
cache-control: public, max-age=2110837
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5cfd
GET

https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAA1olEHW.img&ehk=WPJSUGUX4FsIFXuvjkFe%2bzqK4vTBND2laMOrP1FX7O4%3d&w=16&h=16&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAA1olEHW.img&ehk=WPJSUGUX4FsIFXuvjkFe%2bzqK4vTBND2laMOrP1FX7O4%3d&w=16&h=16&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2535
cache-control: public, max-age=487037
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d03
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ORMS.caf4b4c012216423e3ea50434708b1ca&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ORMS.caf4b4c012216423e3ea50434708b1ca&w=197&h=113&c=6&rs=2&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5cf7
GET

https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fBB18qTPD.img&ehk=ACDsxTjOHHrtkcsDjD1VzRk%2bjzJVgwQaFiC32Ph6xjI%3d&w=16&h=16&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fBB18qTPD.img&ehk=ACDsxTjOHHrtkcsDjD1VzRk%2bjzJVgwQaFiC32Ph6xjI%3d&w=16&h=16&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5cf8
GET

https://th.bing.com/th?id=ORMS.7b03e2dcd50165d9674fccaa99ac981b&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ORMS.7b03e2dcd50165d9674fccaa99ac981b&w=197&h=113&c=6&rs=2&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 747
x-check-cacheable: YES
cache-control: public, max-age=646212
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d0a
GET

https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAywOab.img&ehk=rN51vCWhHy3dmBpw%2f4%2fYEcRTAocQ0Jd67gAoIdWUaSQ%3d&w=16&h=16&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAywOab.img&ehk=rN51vCWhHy3dmBpw%2f4%2fYEcRTAocQ0Jd67gAoIdWUaSQ%3d&w=16&h=16&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 771
cache-control: public, max-age=2095778
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d1f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ORMS.596e88934344ffbc1a9d14ef8f22cb8c&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ORMS.596e88934344ffbc1a9d14ef8f22cb8c&w=197&h=113&c=6&rs=2&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1087
cache-control: public, max-age=1209500
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d09
x-check-cacheable: YES
GET

https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAX9HXl.img&ehk=JP6nTfVGTWk9xpcL1gh%2fj6CrohbqB1i4ryLzLxi7sGw%3d&w=16&h=16&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAX9HXl.img&ehk=JP6nTfVGTWk9xpcL1gh%2fj6CrohbqB1i4ryLzLxi7sGw%3d&w=16&h=16&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4089
cache-control: public, max-age=1209570
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d04
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 674
x-check-cacheable: YES
cache-control: public, max-age=2011427
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d25
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1556
cache-control: public, max-age=1073827
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d30
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ORMS.5db5ce15b456680679adad8accdbe190&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ORMS.5db5ce15b456680679adad8accdbe190&w=197&h=113&c=6&rs=2&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 962
x-check-cacheable: YES
cache-control: public, max-age=1166492
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d27
GET

https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAXVbDx.img&ehk=gdZRZFNyP9rv3%2bXTu8WN8bMTv2YWemdTgp3%2f6b6N0BY%3d&w=16&h=16&o=6&pid=Wdp

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAXVbDx.img&ehk=gdZRZFNyP9rv3%2bXTu8WN8bMTv2YWemdTgp3%2f6b6N0BY%3d&w=16&h=16&o=6&pid=Wdp HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d32
GET

https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 997
cache-control: public, max-age=2196653
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d4c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.mL-mRi4hZGcERs5Pt8SYFwIIFk&w=216&h=120&c=7&bgcl=50dbf0&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.mL-mRi4hZGcERs5Pt8SYFwIIFk&w=216&h=120&c=7&bgcl=50dbf0&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d34
GET

https://th.bing.com/th?id=OIP.hT_9L37Psuhb5Vs-QHP0AAHaD4&w=80&h=80&c=1&vt=10&bgcl=a2e427&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.hT_9L37Psuhb5Vs-QHP0AAHaD4&w=80&h=80&c=1&vt=10&bgcl=a2e427&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 627
cache-control: public, max-age=456566
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d51
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&o=6&pid=Stories

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&o=6&pid=Stories HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d33
GET

https://th.bing.com/th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=16&h=16&o=6&pid=Stories

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=16&h=16&o=6&pid=Stories HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2280
cache-control: public, max-age=2020445
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d5a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=16&h=16&o=6&pid=Stories

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=16&h=16&o=6&pid=Stories HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 773
cache-control: public, max-age=1618764
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d5d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&o=6&pid=Stories

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&o=6&pid=Stories HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1837
cache-control: public, max-age=1170550
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d63
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 16043
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc654da471999a598d30d6d4df6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LIYPzVG+n/uZoJr/ie5yA8LHN7br4N3XP30LwWD3jyM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:46 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:46 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d4b
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A902%2C%22time%22%3A917%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202245836%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A902%2C%22time%22%3A917%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202245836%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1803
cache-control: public, max-age=728913
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d6d
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1306
cache-control: public, max-age=546594
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d6f
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2208
cache-control: public, max-age=135302
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (A)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d71
x-check-cacheable: YES
GET

https://www.bing.com/images/sbi?mmasync=1&ig=E9B4EEE704DA440DBD76C2146D78BB87&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=E9B4EEE704DA440DBD76C2146D78BB87&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 773
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cc60e0749afbc298f0b8253ee31
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wVcPQ8dN644OLjKPX30rVNWlphSMXVd/rr6IG+U0lsU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cc60e0749afbc298f0b8253ee31|AFD:67300cc60e0749afbc298f0b8253ee31|2024-11-10T01:30:46.831Z
date: Sun, 10 Nov 2024 01:30:46 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:30:46 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d57
GET

https://th.bing.com/th?id=ODLS.993613a0-d7b9-480e-bba4-695b017ed9f6&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.993613a0-d7b9-480e-bba4-695b017ed9f6&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 998
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cc6dbfa494f9438c5904919f131
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pfTrMEfCpMJGfh9MkoDJjcRzPEa2xYk0QUmcFduBbTI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cc6dbfa494f9438c5904919f131|AFD:67300cc6dbfa494f9438c5904919f131|2024-11-10T01:30:46.831Z
date: Sun, 10 Nov 2024 01:30:46 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:30:46 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:30:46 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202246.d5a5d58
GET

https://th.bing.com/th?id=ODLS.c34f0c6f-0c1f-4d89-ad65-2e38ecc81010&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.c34f0c6f-0c1f-4d89-ad65-2e38ecc81010&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1995
cache-control: public, max-age=1209561
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d5c
x-check-cacheable: YES
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=E9B4EEE704DA440DBD76C2146D78BB87

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=E9B4EEE704DA440DBD76C2146D78BB87 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1679
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d60
x-check-cacheable: YES
POST

https://www.bing.com/rewardsapp/reportActivity?IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.5064&q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.5064&q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
content-length: 205
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2584
cache-control: public, max-age=1667153
date: Sun, 10 Nov 2024 01:30:46 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202246.d5a5d7b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e0e
GET

https://th.bing.com/th?id=OIP.tQiHAlQF_pLK2Ts9V__2uwHaE7&w=80&h=80&c=1&vt=10&bgcl=99819d&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.tQiHAlQF_pLK2Ts9V__2uwHaE7&w=80&h=80&c=1&vt=10&bgcl=99819d&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e13
GET

https://th.bing.com/th?id=ODLS.b7bf26b8-96cf-4b65-8ce1-128277d6e6d3&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.b7bf26b8-96cf-4b65-8ce1-128277d6e6d3&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 38271
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc721f64b739dd8531d1f352317
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-MybcYpRYOvEWzvhLAkgeMPgsdybTcL6ERnPoGDnJvlw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e45
GET

https://th.bing.com/th?id=OIP.9J8e_M6g8xZUy5TK5lfTfgHaDt&w=80&h=80&c=1&vt=10&bgcl=f1a736&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.9J8e_M6g8xZUy5TK5lfTfgHaDt&w=80&h=80&c=1&vt=10&bgcl=f1a736&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e90
GET

https://th.bing.com/th?id=OSK.ea9899573e620974426db30df1527976&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.ea9899573e620974426db30df1527976&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e98
GET

https://th.bing.com/th?id=OSK.4905be99d304a489df620ee0bb302e20&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.4905be99d304a489df620ee0bb302e20&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e9c
GET

https://th.bing.com/th?id=OSK.EcElDasThZnB-E--ul6X2SqqFyzrU1eeqncW2WdPhJQ&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.EcElDasThZnB-E--ul6X2SqqFyzrU1eeqncW2WdPhJQ&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300cc7d95c4e3c9bb2ff6a16d2cbe3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-D4Ta9Hf0BFFC6tOH93q421BYbgaZEboFhIBVO1XoTHY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: E95763ED5E9042959C06DBB4AA80A0AB Ref B: LON601060101042 Ref C: 2024-11-10T01:30:47Z
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ea1
GET

https://th.bing.com/th?id=OSK.40f49d7944b6961b839d408c320a6cea&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.40f49d7944b6961b839d408c320a6cea&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: bm_sv=BF8EA4734FF7770C8EEBB91B1571BC0C~YAAQp3d7XIMVzAmTAQAALuWxExl9uG3n+V5m0HkeN/REIPxkKs/ket1Yas1oEk3BUCZkTb421RQ1ympKog8eW8ZxGUGIrm+f/Bl45JVMhuyelgM0pQRA2VY654pKUDhK1b9qV03vpTL0y+JWQNEKdtlDFdQooTz4/6nFGzzXY45ql3iBhKRLXTBw805qPqS65meY16gn8qlfaZRKb1G6x5NhyHMHjR+uvKuPc4KB3LpicmsWOXvzMqU1jUE6kg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ebe
GET

https://th.bing.com/th?id=OSK.f376c9239e2ade4725003c8c7c19cb9e&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.f376c9239e2ade4725003c8c7c19cb9e&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:37.0136756+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ec5
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?BF=MSJ0&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 624
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc7329540509e5064bf9d2a8ba3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hKX4t/COYHr/T7AI/oyE9qUXUKUyQhqUtdZmAXfzPqM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e47
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?BF=MSJ1&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ec4
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=E9B4EEE704DA440DBD76C2146D78BB87&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=E9B4EEE704DA440DBD76C2146D78BB87&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 631
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc7266040cc9bbb4c170390e2d2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-r+c+uLL/qPFcJmfGRqicJCEnBXirmlGTiIiqeClPP14='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e48
GET

https://www.bing.com/videos/vdasync?f=ch&mid=ECD7663B35F07C5A9D44ECD7663B35F07C5A9D44&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=ECD7663B35F07C5A9D44ECD7663B35F07C5A9D44&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 571
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc7bc77465293400a12985de742
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+jqjXog9writzqUHDmX1H5U+l7RwU7gIdwHXtBX+Ne8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e59
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EF66141C7D58D405D129EF66141C7D58D405D129&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EF66141C7D58D405D129EF66141C7D58D405D129&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 427
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc7913e4ef8a49759b17878df01
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RNiy4M1EmF6HcibH/FPNYasediW/ioMKRj8vg5C6ksE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e5c
GET

https://www.bing.com/videos/vdasync?f=ch&mid=6DEB43719169D278C11B6DEB43719169D278C11B&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=6DEB43719169D278C11B6DEB43719169D278C11B&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

cache-control: private
content-length: 7824
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cc70b8f4365a06cac68ec177864
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-KTLzDTJoY40KXpd4XY5bjSUt9kQpZBfbJGMja4QxxLA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 89D3C563064849C8813A37D4D3914B39 Ref B: LON601060108060 Ref C: 2024-11-10T01:30:47Z
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5eb3
GET

https://www.bing.com/videos/vdasync?f=ch&mid=88D8756E1E830D26E0FE88D8756E1E830D26E0FE&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=88D8756E1E830D26E0FE88D8756E1E830D26E0FE&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 519
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cc7de9d485a98854ace028ec3d6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CZYN+BUMtUHO2+Z5oxsxsPtV36+GjWGa5BEGGssPHXo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5e5a
GET

https://www.bing.com/videos/vdasync?f=ch&mid=5103707905537EB0EA3F5103707905537EB0EA3F&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=5103707905537EB0EA3F5103707905537EB0EA3F&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5753
cache-control: public, max-age=608105
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5eed
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245882%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245897%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246087%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202246097%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246179%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22Idx%22%3A%220%22%2C%22Total%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246232%2C%22Name%22%3A%22ActiveSlide%22%2C%22FID%22%3A%22StoryExp%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245882%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245897%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246087%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202246097%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246179%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22Idx%22%3A%220%22%2C%22Total%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246232%2C%22Name%22%3A%22ActiveSlide%22%2C%22FID%22%3A%22StoryExp%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9048
x-check-cacheable: YES
cache-control: public, max-age=1064821
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5eee
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum47%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum47%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9500
x-check-cacheable: YES
cache-control: public, max-age=167352
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5eef
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f47%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f47%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8330
x-check-cacheable: YES
cache-control: public, max-age=810691
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5ef0
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=E9B4EEE704DA440DBD76C2146D78BB87

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=E9B4EEE704DA440DBD76C2146D78BB87 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4361
x-check-cacheable: YES
cache-control: public, max-age=210440
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5ef1
POST

https://www.bing.com/stories?IID=SERP.5926&IG=E9B4EEE704DA440DBD76C2146D78BB87

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /stories?IID=SERP.5926&IG=E9B4EEE704DA440DBD76C2146D78BB87 HTTP/2.0
host: www.bing.com
content-length: 103
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ee2
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum53%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum53%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ee3
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f53%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f53%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5800
cache-control: public, max-age=628965
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5eec
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ee9
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22CustomData%22%3A%22%7B%5C%22rep%5C%22%3Atrue%2C%5C%22med%5C%22%3Afalse%7D%22%2C%22T%22%3A%22CI.SettingsAudit%22%2C%22TS%22%3A1731202246233%2C%22Name%22%3A%22InitialSettings%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22CustomData%22%3A%22%7B%5C%22rep%5C%22%3Atrue%2C%5C%22med%5C%22%3Afalse%7D%22%2C%22T%22%3A%22CI.SettingsAudit%22%2C%22TS%22%3A1731202246233%2C%22Name%22%3A%22InitialSettings%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5eeb
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ef9
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ef7
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5ef8
GET

https://th.bing.com/th?id=OVP.QbqZqm9y-cu3qpve7FYb8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.QbqZqm9y-cu3qpve7FYb8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8658
cache-control: public, max-age=835260
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5f1a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.PuZPSSghgqqhPtxRzQDfiQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.PuZPSSghgqqhPtxRzQDfiQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cc709934be997212b17a0ca1165
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9Su/DLKHQYH9rxd1NG5VQ6+gxMeSSGPqLYE4ofmXX/4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: C1F968B4E8724CB3BDD4FDF5943052D4 Ref B: LON601060104052 Ref C: 2024-11-10T01:30:47Z
date: Sun, 10 Nov 2024 01:30:47 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047; domain=.bing.com; expires=Fri, 05-Dec-2025 01:30:47 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5efa
GET

https://th.bing.com/th?id=OVP.pwyTCM56Mg3XcF2an9ljiAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.pwyTCM56Mg3XcF2an9ljiAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6551
x-check-cacheable: YES
cache-control: public, max-age=821278
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5f2c
GET

https://th.bing.com/th?id=OVP.0uz3I1OMVBgmcBRqyCi7iQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.0uz3I1OMVBgmcBRqyCi7iQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4167
cache-control: public, max-age=808768
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5f2d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.GoeBXy3IU8duli-5u2NddQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.GoeBXy3IU8duli-5u2NddQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202246

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 16493
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:30:47 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202247.d5a5f30
GET

https://th.bing.com/th?id=OVP.1VCukEUNQze49YyDvoFG4gIIII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.1VCukEUNQze49YyDvoFG4gIIII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202247.d5a5f61
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202248.d5a6302
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B71BE192E26C4979803D29DD2A869AC0 Ref B: LON601060102031 Ref C: 2024-11-10T01:30:48Z
content-length: 0
date: Sun, 10 Nov 2024 01:30:48 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202248.d5a6304
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202249.d5a661e
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202250.d5a6a2d
GET

https://th.bing.com/th?id=OVP.p4erdTYH1no59r--7Qa4VQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.p4erdTYH1no59r--7Qa4VQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202255.d5a7a6f
GET

https://th.bing.com/th?id=OVP.mH9L3iu4Lan21ECOrb6w1QGGII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.mH9L3iu4Lan21ECOrb6w1QGGII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:30:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202257.d5a808a
GET

https://th.bing.com/th?id=OIP.3u-t1TSmFpQa0-IQ7YtCcAHaIY&w=163&h=184&rs=1&p=0&o=6&pid=Stories

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.3u-t1TSmFpQa0-IQ7YtCcAHaIY&w=163&h=184&rs=1&p=0&o=6&pid=Stories HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202261.d5a8e1c
GET

https://th.bing.com/th?id=OSK.HEROGyLxvWluhDKGUAzymL0UrujhjmXqRQYSC0Y78fJR0Dc&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.HEROGyLxvWluhDKGUAzymL0UrujhjmXqRQYSC0Y78fJR0Dc&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013037
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202263.d5a9407
GET

https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22637%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221438%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22time%22%3A%221345%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246396%2C%22Name%22%3A%22Ready%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246437%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22637%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221438%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22time%22%3A%221345%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246396%2C%22Name%22%3A%22Ready%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246437%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202263.d5a9402
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 415
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 422
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cda48b945b1993ad6c30ac9c30c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-M82AMUMMIktLCgGymYdxvGjEsawa5XtzttbZpxLjC98='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:06 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3898B55A321B6591042FA06933A0648B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202266.d5a9df3
GET

https://www.bing.com/aes/c.gif?type=mv&tids=33,35,37,39&rg=2b8312186e4e4b538eba8470993d5745&reqver=1.0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /aes/c.gif?type=mv&tids=33,35,37,39&rg=2b8312186e4e4b538eba8470993d5745&reqver=1.0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 397
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cda71234889be488eaac2540bda
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-u7Jg6b55E3Ggsnbh+JnP9rmmsmKcglFcGVA4uxl77Io='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3E02107C19AA6C953A91054F18866D08; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202266.d5a9e52
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 24824
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 415
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdb80e741e28aebd5c27f6eb2f5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-O2KYRteL9+2+TbPsuJZEYOJMHR3iuWYAhfpWPqMJnOM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=006D85D03505608039E290E334026175; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202267.d5a9fb7
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 724
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 360
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdb6df14889b286622c63799969
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZxphVOMBIIlrM8XFSvmB9VNvkK787CexaeoLej6QVw8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3472465A6CEC6C8A226153696DF56DAA; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202267.d5aa0df
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 761
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 312
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdbb9ba4c1798ad6779d275ee75
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZNRKbIp7ojkgg4LhMVkK9B9m1I23dyRqdbeLY4VbvbM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=103A4D7A6F216AD9314458496E246B0B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202267.d5aa131
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1091
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 277
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdc22ea4f21b217a71b3feaa2f2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-JEJisSnVH5k+LnsEttnYxFEbcLiqZZ9PrwgePpmUgCQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=184C4849C7B5685E33F45D7AC66E6961; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202268.d5aa2cf
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1660
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdcd8764af0b867c31f41a6b521
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-2d7Y6X5TT3tiM5puzv4rrQC6249vEFoMWGMHZ/yxA3A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0DDFD0DC9A686BC40F13C5EF9B6F6A2C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202268.d5aa341
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2505
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdcabfe4afd82354098637fed8f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-paoXh9GUzFG738pYwHcJCfyxZdF/4/n+PKoQdxXybsE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2A33A2778A59605D0EFEB7448B9F614A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202268.d5aa3af
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 276
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdcb54942afa4cce4e2f3492e7c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Jea7oaEt1D8TXS67rEfbTEbmJ63iYUePJVPeUWoa3FQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2694DAEEC62D651B1DD0CFDDC7FF648B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202268.d5aa3e4
GET

https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=42bf59720d7d43e494a618776391f9d5&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=42bf59720d7d43e494a618776391f9d5&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 274
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdd1cee46ef965b302fb69ca1a5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6/5bUbXrjWRbEk3zpZrGejOfmia2KSFwMsyshBnnkYg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:09 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:09 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=22DDEFE78D276EA11D78FAD48C3E6F7E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:09 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202269.d5aa43b
GET

https://www.bing.com/qbox?query=bo&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=198f5ce7224b402fafc9ed3a1c9059bc&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bo&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=198f5ce7224b402fafc9ed3a1c9059bc&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:30:09 GMT
vary: Accept-Encoding
x-eventid: 67300cdd031149e599804e9673d92763
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-KaOK+oZlDoRbU+1cq+Xq/GvYtmLgIdmzXHEHBm4oCJ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:31:09 GMT
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202269.d5aa561
set-cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:31:09 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=bon&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a46e9fec8fbc49af8bb2b352ec62e983&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bon&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a46e9fec8fbc49af8bb2b352ec62e983&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa698
GET

https://www.bing.com/qbox?query=bonz&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=6e17ac0230c7420a9bf6eb0acbdfcd4d&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonz&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=6e17ac0230c7420a9bf6eb0acbdfcd4d&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa697
GET

https://www.bing.com/qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a7f43dd229874a6395f906162d4c44ef&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a7f43dd229874a6395f906162d4c44ef&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa6ce
GET

https://www.bing.com/qbox?query=bonzi+&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=04fd5e6acdd34f94870e5f9b348e86f9&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=04fd5e6acdd34f94870e5f9b348e86f9&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa6cd
GET

https://www.bing.com/qbox?query=bonzi+b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=ace4395c73a34e0cb039d59267a3d6b8&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=ace4395c73a34e0cb039d59267a3d6b8&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2150
cache-control: public, max-age=1209576
date: Sun, 10 Nov 2024 01:31:10 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202270.d5aa6cf
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=bonzi+bu&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=13bdbfecf80d436888c796441c735670&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+bu&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=13bdbfecf80d436888c796441c735670&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa6dc
GET

https://www.bing.com/qbox?query=bonzi+bud&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=5ea964b21df1475388e1228a973dc6d3&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+bud&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=5ea964b21df1475388e1228a973dc6d3&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4738
cache-control: public, max-age=1209582
date: Sun, 10 Nov 2024 01:31:10 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202270.d5aa6f7
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=bonzi+budd&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=8fda649acf894809b326b69b67691154&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+budd&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=8fda649acf894809b326b69b67691154&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1914
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:31:10 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202270.d5aa6f5
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=bonzi+buddy&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=caafaa6b844545cabfeb5a958cd5806b&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bonzi+buddy&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=caafaa6b844545cabfeb5a958cd5806b&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4738
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:31:10 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202270.d5aa6f4
x-check-cacheable: YES
GET

https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa760
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:224,%22SE%22:-1,%22TC%22:-1,%22H%22:467,%22BP%22:473,%22CT%22:488,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:224,%22SE%22:-1,%22TC%22:-1,%22H%22:467,%22BP%22:473,%22CT%22:488,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa765
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4516&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa778
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A511%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A511%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa779
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa777
GET

https://th.bing.com/th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=3b83ea&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=3b83ea&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 16043
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cde9d1349eea124e5b1d1e5b441
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-DzvjfFDv8NpXFKD/s55vfx+ajHpB/Z077EY+vJXLQ7s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa77a
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cde53aa41088878f7f80977e1e6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-glSN0nBaioC+mRcBM4BQurFyhWI/OCQTKy4MoOCriG8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cde53aa41088878f7f80977e1e6|AFD:67300cde53aa41088878f7f80977e1e6|2024-11-10T01:31:10.566Z
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa786
GET

https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=56805e&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=56805e&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 987
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cde5d57475c975a048337031984
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-OghQ78z6oSOx59LU3dt+bqaQR8qvxpqeeh2kyw8B0bA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cde5d57475c975a048337031984|AFD:67300cde5d57475c975a048337031984|2024-11-10T01:31:10.569Z
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:31:10 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa78a
GET

https://th.bing.com/th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=e744b6&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=e744b6&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 42857
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cde82a448e28c95feb8766d1c36
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IWl1K9dufrQOqBA8yMKWbZmCxOVVUaQyHaZuQowaoQM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cde82a448e28c95feb8766d1c36|AFD:67300cde82a448e28c95feb8766d1c36|2024-11-10T01:31:10.657Z
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:31:10 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa7ae
GET

https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=206222&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=206222&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 38273
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cded03846d394b7fed71caac8ca
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6lUDYSgSlXv0Nexnr6UA0LZLrmUmPjnK4jAW3IBOIts='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa811
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa838
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa84c
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269310%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269313%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269318%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22OverlayBanner%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22OverlayBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A1280%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A1075%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269310%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269313%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269318%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22OverlayBanner%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22OverlayBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A1280%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A1075%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa84b
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa84f
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 592
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cde67964108be7514df18087bd0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Vi/HjOWAt4awIbcB5WQNAiz5ar9FvLLSY66v5x0o6I0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa819
GET

https://www.bing.com/images/sbi?mmasync=1&ig=1667B6398F6640F090534A09449B87B6&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=1667B6398F6640F090534A09449B87B6&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 554
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cde6cdb46888af0b583b2f0237b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bhCMA3dXqIece5uQZdgInchXhQUyWf0qc9x96GSUXJ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa81f
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=1667B6398F6640F090534A09449B87B6

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=1667B6398F6640F090534A09449B87B6 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cdec7ca4c34a37b690a72463d44
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dQlja+CJMq5i3qrnfY/7toOQlnXO/1X1TQuZ2T83PpI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa81d
POST

https://www.bing.com/rewardsapp/reportActivity?IG=1667B6398F6640F090534A09449B87B6&IID=SERP.5064&q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=1667B6398F6640F090534A09449B87B6&IID=SERP.5064&q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 169
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-11-09T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:30:46.8471949+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHS=PC=U531
cookie: bm_sv=43B71535C8F5DC9F3FA007445DF89420~YAAQp3d7XLQVzAmTAQAA9EGyExmLsMbQp0J2ZuSIfWxnD+N8qTb0LFr+E5zhAyllhrGqhwuTGesJJPDdvWGcJHg7h5eRk83N8nLdgQ9JVFwLW4w/edyW4U/RLiSvJ+7GcW3UzwIhirA6drA9i1OT7KvvGxAwC8Ij9IlfJnSgyu5KwXWiRxO24qlX6ovzE+ub75pWXL7Zr6p1QisZfmcFPO9dYegVPCF73krd0cM2Tdb88wJpHHb37/VlSK08qQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 333
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cde2f1d45089e873b5ac79f7a7d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5STI2qXwCvUT6TC/3GuO/fazCSQImIYvgXwAFu/7RWU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa81c
GET

https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=11%2F10%2F2024&isDarkMode=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=11%2F10%2F2024&isDarkMode=0 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 400

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300cde72c54b3a98ae3697a08149e3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VazhOmfy5xoh52ozklio/TOtUYC1oDJPH+bMxLZaqew='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: C37F08E8566F42E1B2C67CCEE3F9EAF5 Ref B: LON601060107025 Ref C: 2024-11-10T01:31:10Z
date: Sun, 10 Nov 2024 01:31:10 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa86a
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=1667B6398F6640F090534A09449B87B6&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=1667B6398F6640F090534A09449B87B6&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa8ab
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa8af
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa8b6
GET

https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 374
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cde51c646e080a05d90eb4754d6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-MhOSjrgCzhItkYMc6x9QTYh7K4XsZmQi/lKHuCuxwu4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:11 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202270.d5aa81e
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

expires: Wed, 23 Oct 2024 11:42:38 GMT
last-modified: Tue, 24 Sep 2024 06:45:40 GMT
etag: 0x8DCDC64812AFBAD
cache-control: public, no-transform, max-age=147446
content-length: 159
content-type: image/png
content-md5: 3LbWxA3PgMI43VsDbT/UGQ==
x-ms-request-id: 1d67e962-f01e-0062-3307-15ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1727923695.603c5aa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa92a
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 168554
content-type: image/png
content-md5: XiGxQfTZw9vLzX6wDXgYGA==
last-modified: Thu, 31 Oct 2024 19:20:44 GMT
etag: 0x8DCF9E11DEE2193
x-ms-request-id: beabca42-501e-0020-6e3c-2c865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=432000
expires: Wed, 06 Nov 2024 09:00:18 GMT
akamai-grn: 0.99777b5c.1730451618.236864e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa929
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa924
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum52%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum52%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa925
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f52%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f52%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa927
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa926
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=1667B6398F6640F090534A09449B87B6

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=1667B6398F6640F090534A09449B87B6 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cdf73724d6b9093498dc59c6500
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SPPksEXmEKQYlY11u2Yy8/RHcnjNYB1VWVMWwdOgIr8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: BEF139F264594121BA3F5FA7501499A2 Ref B: LON601060107025 Ref C: 2024-11-10T01:31:11Z
date: Sun, 10 Nov 2024 01:31:11 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:11 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:11 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa928
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269634%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202269832%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202269900%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269634%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202269832%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202269900%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202271.d5aa964
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300ce033fa4c238e897e91edb705ba
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lOU/42HrDnKc6sEBpKpOoJEBY0tIFHOpFBk5hW/yB2Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: C2805990753A4BC9879302D031C20DE2 Ref B: LON601060107031 Ref C: 2024-11-10T01:31:12Z
content-length: 0
date: Sun, 10 Nov 2024 01:31:12 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:12 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202272.d5aac61
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202272.d5aaca1
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22BNPNotificationShown%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22BNPNotificationShown%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2B3552FFE2A24C77819CE81D5E7A7049 Ref B: LON601060107036 Ref C: 2024-11-10T01:31:12Z
content-length: 0
date: Sun, 10 Nov 2024 01:31:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202272.d5aaca6
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202273.d5aae4d
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300ce2e1d449bc8c10d6464f7bb7a1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CWO1eJRoR9nMiT4EHmBNFdCZ9LbLefzfviu5CU9z0N8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D1D223847EF340B08E87B1B868273EBC Ref B: LON601060105042 Ref C: 2024-11-10T01:31:14Z
content-length: 0
date: Sun, 10 Nov 2024 01:31:14 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:14 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202274.d5ab0c1
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1169
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4BFF5166BB504D5E88DA5A763035022C Ref B: LON601060105042 Ref C: 2024-11-10T01:31:14Z
date: Sun, 10 Nov 2024 01:31:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202274.d5ab12e
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202270

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202274.d5ab170
GET

https://www.bing.com/rp/riex-B4Wu33VmTnuzuD5P6KP00s.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/riex-B4Wu33VmTnuzuD5P6KP00s.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=11%2F10%2F2024&isDarkMode=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202274.d5ab190
GET

https://www.bing.com/rp/f486BDVfMqELn3q3UfwjgS6uu4k.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/f486BDVfMqELn3q3UfwjgS6uu4k.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=11%2F10%2F2024&isDarkMode=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013047
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123

Response

HTTP/2.0 200

content-length: 452
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cebebab47249dece15997cd2797
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ejhFvBOyuZWbsF9usYVsrsk/sEWRQ41NSxXU+pWQBug='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:23 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:23 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=241A317FE21C63D101B7244CE3796270; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:23 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202283.d5acae6
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202270071%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202270081%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22812%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221571%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270330%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202270071%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202270081%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22812%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221571%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270330%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111

Response

HTTP/2.0 200

content-length: 311
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cec78c04bd4964715ec599894f5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jwgKNLfKoi9NRc8cAAG38IOV6Pf7PEdDOtBAG7i6xR4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:24 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=24753161B8D565420B642452B91364ED; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202284.d5acb58
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5971.2&url=javascript%3A%20void(0)

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5971.2&url=javascript%3A%20void(0) HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111

Response

HTTP/2.0 200

content-length: 354
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cec9106493ab6da7739eceab3bb
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+QZJLfvVKOqETpQWulcEdku0fpoh+V6Ejfgaj1UwVus='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:24 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=002B3D2914F26E6B1D17281A15206F8E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202284.d5acc8a
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MCPDismissed%22,%22FID%22:%22CI%22,%22Name%22:%22W3C_Timestamp%22,%22Text%22:%223054%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MCPDismissed%22,%22FID%22:%22CI%22,%22Name%22:%22W3C_Timestamp%22,%22Text%22:%223054%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 343
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cec865c472d9ab50994c8d3810a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-KnJhzpg07LxAJVNyIuTaCTsCEymd4NpRHlnZGY3capA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:24 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13B3B473275467750332A14026B96679; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:24 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202284.d5acd57
GET

https://www.bing.com/aes/c.gif?type=mv&rg=fcfc70abd9a14bdd8989283311f84fb7&SI=1&reqver=3.0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /aes/c.gif?type=mv&rg=fcfc70abd9a14bdd8989283311f84fb7&SI=1&reqver=3.0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 248
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300ced94eb42bd8abd66c5ad3153ce
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ljBdKhjQcm+PJxK+AhMgdgf9NXSGYk86/0XSXjPIrk0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:25 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=12845DB67FE5686B2B1F48857EDA6956; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202285.d5ace59
GET

https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1731202271564%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1731202271564%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 430
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300ced27eb42d79152725004ccc90f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Zr6Intx0txdZ0w0VtAig8fUWtsOEaYjq3Zos5OMAN3Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:25 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0D65C591D6BD6E7833EAD0A2D72C6F91; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202285.d5aceb1
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 300
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cedba2246d786ea7cf1e3b7a843
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LpnpyHao7dpXA2AmxtIZp2g8J2jAGmv1Cscj5QcRXCQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:25 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=346571B59298696439F4648693376829; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202285.d5acfeb
GET

https://www.bing.com/ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 335
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cedd51542afad9d2a46532715fc
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VMJw2XAEcerMehX4buyl8roYdXd0aJknCciM7pEESwI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:25 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=358441206F056A44260054136E806BE6; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:25 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202285.d5ad043
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 21503
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 347
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300ceeddc1471baa7379d6b630e785
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-V4DgtbE8zGNRTANmrdHFCD6PD/6IWvwkIcQTp4n8+vs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:26 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:26 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2507ADFF6E9263AE1DE1B8CC6F176278; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:26 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202286.d5ad160
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 286
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 267
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cee0dd5473a98926420dd18f4e2
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5bbxR4CJk/t1V1cHHzFuXLcA0//g+vqjZtvNZCQqrhE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:26 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:26 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0E976017798368C13F697524784369BB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:26 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202286.d5ad466
GET

https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=0fbdebe516c449cabf496e7f53fee3b4&oit=1&cp=1&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=0fbdebe516c449cabf496e7f53fee3b4&oit=1&cp=1&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 303
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cefd51b4cc1b0b1945523dbc3fe
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9oVJKSF1YrgmrjHM2vGppVX+bgMAsKrahi1MStKKiVs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:27 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0B35529655B967E0131B47A554A966FD; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:27 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202287.d5ad56a
GET

https://www.bing.com/qbox?query=is&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=7b27d66e84b041679fa073e9eea904a4&oit=1&cp=2&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=7b27d66e84b041679fa073e9eea904a4&oit=1&cp=2&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 338
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cefd38b48dda8a44cf64dc3b02a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-174lhKEi2l0gMBmTxa0LE8JAlKsC5Sphw9FfmbvxRUw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:27 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:27 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2213F4386FAC69302A9CE10B6E4068D2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:27 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202287.d5ad61f
GET

https://www.bing.com/qbox?query=is+&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=6a45337da6644fbb96a8fcbe1648c896&oit=1&cp=3&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=6a45337da6644fbb96a8fcbe1648c896&oit=1&cp=3&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 267
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf0813f4f9e8cb5a46e8550cc20
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-w71/VUn/2fQS2Hz5JswWgMokpfiS+G6F7KyqM/wc5dM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:28 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1B500831C7A6651A3F9B1D02C64964A2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202288.d5ad83a
GET

https://www.bing.com/qbox?query=is+b&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=2b011f439e9e40e9a801b8a0b9e39d6e&oit=4&cp=4&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+b&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=2b011f439e9e40e9a801b8a0b9e39d6e&oit=4&cp=4&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 325
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf0deda4869b28bb25cd2a839b6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0WOs/In3msS+Q0AeYIVI49fVQtlWU98QWEhv4FR8ORQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:28 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=29FD65D619C4685A2E1570E5189C69CB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202288.d5ad970
GET

https://www.bing.com/qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=b8c38d9a42c34351bed3471efc919ae1&oit=4&cp=5&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=b8c38d9a42c34351bed3471efc919ae1&oit=4&cp=5&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 287
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf02338436c987c402015b33da3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-DTcblZYcqn1w+bqSRHtVIvb3AU64lj02QrRR1YCFP8s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:28 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=14C461C6630D6B201C0D74F562AC6A96; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202288.d5ada0f
GET

https://www.bing.com/qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=f0da30f61d8a468aba09417405cd0304&oit=4&cp=6&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=f0da30f61d8a468aba09417405cd0304&oit=4&cp=6&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 347
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf0978845748c3461302c33419f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dStwnTMsDksQ4oZh7g9mFwKgei1N7ExvBNHXaWq+5rc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:28 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=11432FB9A75E640D23DE3A8AA6D76559; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202288.d5ada64
GET

https://www.bing.com/qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=cced158ebe384a42a936ae53e10febc7&oit=4&cp=7&pgcl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=cced158ebe384a42a936ae53e10febc7&oit=4&cp=7&pgcl=1 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 335
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf0e50f4812848db05944916b09
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-OI1vI8U1U0FnRBNaNtAESBqniDVWH5cYimV1kbx966o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:28 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1E24A1D73D766A652C07B4E43CE76B09; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:28 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202288.d5adaed
GET

https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d7e8cfdb639a40959fc3b6674986fe3c&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d7e8cfdb639a40959fc3b6674986fe3c&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 300
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf1e46f42d3bd4062a4776baa1a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Rz4sE8foVg/JdzBsDneOUsGTlgT+p2nx4/kSjYmf4uY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:29 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:29 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2964014671A8688F389E147570E3690B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:29 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202289.d5adba6
GET

https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=22a088accb3b4f3b9dc3199ec062fcfa&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=22a088accb3b4f3b9dc3199ec062fcfa&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 430
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf122a146689cda6a3428811922
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sOE238UzAaWzx/j58GkLQtoHSHg5VjuQktWgBgeL+nc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:29 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:29 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=357FFF623AC9696130B8EA513B316891; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:29 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202289.d5adc38
GET

https://www.bing.com/qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=18a1e141d09e4c48a157ff111d5efa2c&oit=4&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=18a1e141d09e4c48a157ff111d5efa2c&oit=4&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 295
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf2ba9042d9abf2189780e2e26f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RyFTlYRiQ7+Z/ulLAXhXFlViDyBiZf9OHtyocX1zWnA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:30 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:30 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1E088DA02138659B006B9893203F64E5; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:30 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202290.d5adf87
GET

https://www.bing.com/qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=99c7c3f8274c48e48faf6424713d35a6&oit=4&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=99c7c3f8274c48e48faf6424713d35a6&oit=4&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 430
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf314504e2a913c4100614707ae
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-MAjr4pbPRlcrNOu7oAA8MNECIQ2xYvvyX2rscNmHnjw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:31 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=216BC86965D162F139DEDD5A6470630F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:31 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202291.d5ae3b7
GET

https://www.bing.com/qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6cff8b2f3429422ba27605ad073547e2&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6cff8b2f3429422ba27605ad073547e2&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 311
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf335e34f1ebc21010d845f918b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-W7psMRZfFonQtAfdCTHeqTma3oSaQJrU0MdjkOZzXU8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:31 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:31 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13281181ACDF62CE281B04B2AD7D632C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:31 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202291.d5ae482
GET

https://www.bing.com/qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4fd63009baea427f9750df9b13a53172&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4fd63009baea427f9750df9b13a53172&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf422494c3c818e18a4031fd584
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-4UIFS4pKGsoCcdAymda0UwXI5y3+tr9c40lXEOo9Ck8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:32 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F5924E6109B64B2313931D51139650F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:32 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202292.d5ae8f7
GET

https://www.bing.com/qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=fa8274c91b8e41bcb6277d73be6990ac&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=fa8274c91b8e41bcb6277d73be6990ac&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 354
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf4af3240ba9c1dcabce17a0495
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7JzSj0rr9S0OInv5FP904VqsiUuMauBmYYer7vRaNNE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:32 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:32 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F15335439166DF23321266738B46C47; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:32 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202292.d5ae99b
GET

https://www.bing.com/qbox?query=i+buddym+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=a8a934c0c46042edb603b564afb9837b&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+buddym+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=a8a934c0c46042edb603b564afb9837b&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 343
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf540b84be486ee36f56ff0f1c5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-byta0nOlglrlVUJPzZ0iIPlPT7S7XzAc7uwIxFy+xlg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0F99B777FF236066032BA244FE6B6168; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202293.d5aea77
GET

https://www.bing.com/qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4d8868fe1fb54f568e5f568223cc3089&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4d8868fe1fb54f568e5f568223cc3089&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 248
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf552e348db880ed215c9eb4c13
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ClFqePNGI/ONkytxDf826qoBxUttk97IBoc1Zf4EUs0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0FCAD1B8CE7665EA1856C48BCF916433; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202293.d5aeb74
GET

https://www.bing.com/qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e0f7165947934a4c832c701d4d2b014c&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e0f7165947934a4c832c701d4d2b014c&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 247
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf5f162429ebc2a6da6ca677b85
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BjQLAckPmt8Ni5fBVXolTTH9070nd8RyOoWZbxLR2Rk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=014633DFF39E6A910A7E26ECF2C16B40; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202293.d5aec06
GET

https://www.bing.com/qbox?query=i+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=54fff4525d9c4afba26cb2ce9ca1d72d&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=54fff4525d9c4afba26cb2ce9ca1d72d&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 252
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf5ca9945cb81ca1348063b4c87
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZxnItkc/y5vopMuhTdSdx0jC9s5ljy7lr3AluAr/Ja8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=35852817033E64330BC63D2402AF651E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202293.d5aecdf
GET

https://www.bing.com/qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=edc9b9e0dda34a06a9f7e1a8af525ed6&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=edc9b9e0dda34a06a9f7e1a8af525ed6&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf616424111a32bc51ea21d2fd9
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VxBId+DgiR0+f8vTNba61HaP0fImr30yN5fUTSaiS8I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2696DC56534C60803623C96552C56185; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202294.d5aed48
GET

https://www.bing.com/qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=db3369f2ba7c4bd983c4f6e7e585b2fb&oit=4&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=db3369f2ba7c4bd983c4f6e7e585b2fb&oit=4&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf656b14a288d45867a972798e3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pajAjSdKVX/FYI4rWvnAgqZkmIrXaP/JMPSj09QN8Uw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=10B3F749609F6EE92BC4E27A619A6FB3; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202294.d5aee2b
GET

https://www.bing.com/qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b2f98707b1354fe4853888fe12f0cf66&oit=4&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b2f98707b1354fe4853888fe12f0cf66&oit=4&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf656904513a931ed56c7fd7cb4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wWw3Z25k3Y0Pn6Ger4PKHncbgOLHU4U032gx/pn0dhg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0FB4D83AD8BA6DD724DFCD09D9AA6C4C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202294.d5aeeac
GET

https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d55e6c17bada42aabd9357c76ebefc78&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d55e6c17bada42aabd9357c76ebefc78&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 273
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf6107e41a8a3b27c60551ec5be
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lOdgbwV25TDh+i0iWemaptC22Ll9R/w7M2fK9bjkzbA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=33D121767603628D0B94344577B86308; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202294.d5aefb1
GET

https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=588643d4d489424a9665313f35f92b95&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=588643d4d489424a9665313f35f92b95&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 280
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf6aad04b3aa46996c3f6fb9eb5
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WtWW2mvNO1bNcc7CvBoQh7CIcnqs+djLQXIX3Hzbg8k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=08BFD36E24F361C10AD9C65D251C6023; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202294.d5af09e
GET

https://www.bing.com/qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=985333009a5947f3bbbcf3b97c19b349&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=985333009a5947f3bbbcf3b97c19b349&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 286
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf793734fde9aa4fa24ff65ca31
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qgokjTBeBUMHeoBwVjqvsFbCnpVOiGb6M5hMLT/ISII='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1C2E2C37D13F6A950E503904D0AE6BB2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202295.d5af2a2
GET

https://www.bing.com/qbox?query=s+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d29e8c5c200942e7804a094514137ab7&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=s+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d29e8c5c200942e7804a094514137ab7&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 285
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf77a8a4206a8394a1adc989008
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-urNE/UhN8EhPTXJjbOcOn+on9keDp/lIrPQs+E/oVXg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=36F24E2A20D9627011B15B192135637B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202295.d5af30e
GET

https://www.bing.com/qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=719add20f0224f7ea713b08b18e2da42&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=719add20f0224f7ea713b08b18e2da42&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 208
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf7d0c24c7d8ab2840686dcfbf9
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-mkXrqvNeWijtj8Cld7VeSBueuCSP0JzBOlJjoEG2AlQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1A799FA97F576D4A16FF8A9A7EE46CBD; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202295.d5af3ed
GET

https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e4b0a1b29b2943f7bb58dd9944086ebd&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e4b0a1b29b2943f7bb58dd9944086ebd&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:30:36 GMT
vary: Accept-Encoding
x-eventid: 67300cf80ea146729fcffa83e1f62d0f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-z8zrrkyTl2mY0ZuJ1oAp+6lbT59dRnisJqn6o4cbdQ0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:31:36 GMT
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af546
set-cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:31:36 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=is&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1977895d28854c749872fb73eb9c70da&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1977895d28854c749872fb73eb9c70da&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af7db
GET

https://www.bing.com/qbox?query=is+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d17a205b4cd14247807f34d4f7a398a5&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d17a205b4cd14247807f34d4f7a398a5&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af7e2
GET

https://www.bing.com/qbox?query=is+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=83a85c55b607443f982ed4e891b80d31&oit=4&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=83a85c55b607443f982ed4e891b80d31&oit=4&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 969
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af879
GET

https://www.bing.com/qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=396015d2c0a84c8f81881fb437fb3a01&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=396015d2c0a84c8f81881fb437fb3a01&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 436
cache-control: public, max-age=899253
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af883
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c008d9f93dcc4cd694710128145a9bd3&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c008d9f93dcc4cd694710128145a9bd3&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af873
GET

https://www.bing.com/qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b4f4a519ee3c4f84a572ebfa011c7ede&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b4f4a519ee3c4f84a572ebfa011c7ede&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1028
x-check-cacheable: YES
cache-control: public, max-age=2289578
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af87e
GET

https://www.bing.com/qbox?query=is+bonzi&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=5b3480c27df342c5ac82a7d7e8592ba9&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=5b3480c27df342c5ac82a7d7e8592ba9&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 481
x-check-cacheable: YES
cache-control: public, max-age=1062110
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af87f
GET

https://www.bing.com/qbox?query=is+bonzi+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c386519a2eb74d0dafbc4382d0525c68&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c386519a2eb74d0dafbc4382d0525c68&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 712
cache-control: public, max-age=1968973
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af889
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=is+bonzi+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1ad7d6c6356f47bea797dbe64176610a&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1ad7d6c6356f47bea797dbe64176610a&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 969
x-check-cacheable: YES
cache-control: public, max-age=1243347
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af884
GET

https://www.bing.com/qbox?query=is+bonzi+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=eaa9ace73f6c40afac9f49d72161b479&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=eaa9ace73f6c40afac9f49d72161b479&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af88f
GET

https://www.bing.com/qbox?query=is+bonzi+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=98459a2596114e1f8ee451097c612fbe&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=98459a2596114e1f8ee451097c612fbe&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=915975
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af89b
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=is+bonzi+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d90a92e548b64fdeb3db0af4fbbf8f89&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d90a92e548b64fdeb3db0af4fbbf8f89&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1694
cache-control: public, max-age=453981
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af89c
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=is+bonzi+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=498df599af12497b997c9428a6769ad9&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=498df599af12497b997c9428a6769ad9&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af874
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=bad43d7f342b4d15b45f6ac1dfad7fa5&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=bad43d7f342b4d15b45f6ac1dfad7fa5&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 521
x-check-cacheable: YES
cache-control: public, max-age=1907493
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af897
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+m&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=f420ffecea0442878b675420c704fb28&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+m&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=f420ffecea0442878b675420c704fb28&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1638
cache-control: public, max-age=1968869
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8a3
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+ma&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6e71e36d3b054f8ca98f903c6bf42c35&oit=4&cp=17&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+ma&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6e71e36d3b054f8ca98f903c6bf42c35&oit=4&cp=17&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2245
x-check-cacheable: YES
cache-control: public, max-age=572235
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8a2
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+malw&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6661651c1884431fb274a6552ac1162f&oit=4&cp=19&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+malw&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6661651c1884431fb274a6552ac1162f&oit=4&cp=19&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5771
x-check-cacheable: YES
cache-control: public, max-age=992987
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8a4
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+malwa&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=412162de564a4d539c49f8db5603f61f&oit=4&cp=20&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+malwa&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=412162de564a4d539c49f8db5603f61f&oit=4&cp=20&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5348
x-check-cacheable: YES
cache-control: public, max-age=993024
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8b5
GET

https://www.bing.com/qbox?query=is+bonzi+buddy+malwar&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c9f53d7b6a2943269aab2e6aaf8d76ee&oit=4&cp=21&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=is+bonzi+buddy+malwar&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c9f53d7b6a2943269aab2e6aaf8d76ee&oit=4&cp=21&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9990
x-check-cacheable: YES
cache-control: public, max-age=131122
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8b6
GET

https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5061
cache-control: public, max-age=728739
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8ba
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:32,%22BC%22:324,%22SE%22:-1,%22TC%22:-1,%22H%22:440,%22BP%22:448,%22CT%22:449,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4953,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:32,%22BC%22:324,%22SE%22:-1,%22TC%22:-1,%22H%22:440,%22BP%22:448,%22CT%22:449,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4953,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 711
x-check-cacheable: YES
cache-control: public, max-age=1970175
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8bf
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 353
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4579&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8317
x-check-cacheable: YES
cache-control: public, max-age=716507
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8be
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202295677%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.45%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202295678%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A476%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202295677%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.45%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202295678%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A476%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=1964577
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8d9
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1638
cache-control: public, max-age=1968857
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8eb
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&o=6&pid=Reference

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&o=6&pid=Reference HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 209
cache-control: public, max-age=895030
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8ec
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f339dac8-a915-4731-aced-1843d9cf9873&w=16&h=16&o=6&pid=Reference

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f339dac8-a915-4731-aced-1843d9cf9873&w=16&h=16&o=6&pid=Reference HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2324
x-check-cacheable: YES
cache-control: public, max-age=2425931
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af8f5
GET

https://th.bing.com/th?id=ODLS.cca51efb-6639-49f5-959b-25809333d72b&w=16&h=16&o=6&pid=Reference

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.cca51efb-6639-49f5-959b-25809333d72b&w=16&h=16&o=6&pid=Reference HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1318
cache-control: public, max-age=896359
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af90b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.ba4035cc-4181-443b-a90f-2e137989f2f9&w=16&h=16&o=6&pid=Reference

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.ba4035cc-4181-443b-a90f-2e137989f2f9&w=16&h=16&o=6&pid=Reference HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1761
cache-control: public, max-age=1209587
date: Sun, 10 Nov 2024 01:31:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202296.d5af90c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af996
GET

https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202296.d5af99e
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 16043
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf94b9d40529094a7073437ad07
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Po65IZKA1YB61u4QA2r/RLiWe5LXQwMp9iMf60VPNKg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9d8
GET

https://th.bing.com/th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9fb
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 771
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cf95f2545eb93c633fc026ecbcd
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-2IEvaPxOdzyHS2IIOl2bXbhUVekxl2BRlQLhVuEX3aA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cf95f2545eb93c633fc026ecbcd|AFD:67300cf95f2545eb93c633fc026ecbcd|2024-11-10T01:31:37.049Z
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9e4
GET

https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9fa
GET

https://th.bing.com/th?id=OIP.dVwmBlQh3DAhV9pbsMa7TwHaDa&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.dVwmBlQh3DAhV9pbsMa7TwHaDa&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9ff
GET

https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1006
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300cf966ae4186afa33c711a2e7444
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+Ea0QoU3HyvzkpKb99VCT9wO2cVQiu3cRvPkyCcZVfU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300cf966ae4186afa33c711a2e7444|AFD:67300cf966ae4186afa33c711a2e7444|2024-11-10T01:31:37.056Z
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:31:37 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5af9ef
GET

https://th.bing.com/th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afa91
GET

https://th.bing.com/th?id=OVP.y7IxBeFU4Iwv1sRxUdws5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.y7IxBeFU4Iwv1sRxUdws5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afa94
GET

https://th.bing.com/th?id=OVP.KM42FUzljUoNZLrZJ5Ve0gHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.KM42FUzljUoNZLrZJ5Ve0gHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afab0
GET

https://th.bing.com/th?id=OVP.q3xdn6DlnXODW7wJVcJzUAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.q3xdn6DlnXODW7wJVcJzUAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afab1
GET

https://th.bing.com/th?id=OVP.keiWfZ1iitka2hRxn1AYZwDKFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.keiWfZ1iitka2hRxn1AYZwDKFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 5449
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cf9e9c54b24a318941294321e55
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Tj/TDdLPlz+2lkHNTYrsvDbkVuN3shT3l2oZSErvxZ4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4B68843C28E04A1C8F4A0B88AB14E270 Ref B: LON601060105042 Ref C: 2024-11-10T01:31:37Z
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:37 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afaa1
GET

https://th.bing.com/th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Fri, 01 Nov 2024 02:03:01 GMT
last-modified: Tue, 24 Sep 2024 06:13:11 GMT
etag: 0x8DCDC5FF7A41413
cache-control: public, no-transform, max-age=156897
content-length: 919
content-type: image/svg+xml
content-md5: NYaSaLcVgW1Om9AzF8DSPA==
x-ms-request-id: a0725849-901e-0014-6a2d-1529f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1727961628.d8ba6842
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afae6
GET

https://th.bing.com/th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 38276
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf968db47c0b1c27ee63afd4c7a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wuW/1XdH44IcV/COW/tcq6zRnJBSbd7bjJ0vm3jzYCI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afaf5
GET

https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb6a
GET

https://th.bing.com/th?id=ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb6b
GET

https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb6c
GET

https://th.bing.com/th?id=ODLS.ebdaa1e2-bda6-4146-a598-6292ca61f077&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.ebdaa1e2-bda6-4146-a598-6292ca61f077&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 592
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf97e6a483fb8a520088e6f8819
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RRGDsVZtwqOGKqWlKP7XuLh3ZSWKniPOb1hw0/qmpcc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afafd
GET

https://th.bing.com/th?id=OIP.hLiWyJpmvXadlUlkMUO08QHaEK&w=80&h=80&c=1&vt=10&bgcl=0e4faf&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.hLiWyJpmvXadlUlkMUO08QHaEK&w=80&h=80&c=1&vt=10&bgcl=0e4faf&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 367
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf9d2a543eeacb9f9dc3ad88ccc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/UrLobUClzA5+Utt2PVX3UCABFVhzBEPsRx76ouVybk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb05
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb4f
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 374
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf954dc47089dbe17ef8c969cdf
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Q2pIpSUEt/ioHu7c9FqY/WkwLyUXm0e2w1/FtWiw2+M='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb04
GET

https://www.bing.com/images/sbi?mmasync=1&ig=FFE47836019D47B2B7F199CA244E4FFD&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=FFE47836019D47B2B7F199CA244E4FFD&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 37227
x-check-cacheable: YES
cache-control: public, max-age=2375219
date: Sun, 10 Nov 2024 01:31:37 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202297.d5afb9b
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=FFE47836019D47B2B7F199CA244E4FFD

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=FFE47836019D47B2B7F199CA244E4FFD HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb90
POST

https://www.bing.com/rewardsapp/reportActivity?IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.5064&q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.5064&q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 167
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb91
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295703%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Time%22%3A1051%2C%22time%22%3A1054%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202296112%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295703%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Time%22%3A1051%2C%22time%22%3A1054%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202296112%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb92
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb99
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: _RwBf=r=0&ilt=5&ihpd=0&ispd=5&rc=15&rb=0&gb=0&rg=200&pc=12&mtu=0&rbb=0&g=0&cid=&clo=0&v=5&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T08:00:00.0000000Z&aof=1&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:10.5850766+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=15&RB=0&GB=0&RG=200&RP=12
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=C5778901F71DC41502EFD4699E4435C9~YAAQp3d7XEsWzAmTAQAAIKmyExkA88gS/tU9hrpUsiRjswJmv5DMSFFAzZCHajoOChkd4ft93/uFQZfqShd1E8JTxjrvQ2YrheHEKhxpbLKwzQz7Uz54ALDRxlU90YjO7D2gcZEGVVITsG7GD3gJ/FKhxiGSxOp8RSq0kiC1iie6Dz5HK23oRKo4z8Sf8iJDkZctW0ZML1qB3tskiQ0Y4lPfvOdpMtytIrQ8WEx1KcxQ1vCnlcE9VpL0/IcVtQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afbab
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoplk%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoplk%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4883
cache-control: public, max-age=1209586
date: Sun, 10 Nov 2024 01:31:37 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202297.d5afb9a
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afbac
GET

https://www.bing.com/wiki?hash=168748024AB9D8354528&order=1%2c2%2c3%2c4%2c5&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=7%2c1%2c11%2c7%2c6&sectionLines=7%2c5%2c5%2c8%2c5&answerID=5656&DataSource=DefaultProd&iid=SERP.5656&ig=FFE47836019D47B2B7F199CA244E4FFD

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /wiki?hash=168748024AB9D8354528&order=1%2c2%2c3%2c4%2c5&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=7%2c1%2c11%2c7%2c6&sectionLines=7%2c5%2c5%2c8%2c5&answerID=5656&DataSource=DefaultProd&iid=SERP.5656&ig=FFE47836019D47B2B7F199CA244E4FFD HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afbb5
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 543
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf932ef4bca833d06282ffe91d1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-p6iPlU/jU4fJdhLRjdkAui8geVgos1sIfy7Yy5T3+8Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb06
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300cf9744b4bc1ac3124d312ede41b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-prQ8sN5TbvfYMtxMYfjcQuDcjGPw0GmiPWTYF3cizrk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4E386B83A3DA478783985AE0F807812B Ref B: LON601060103029 Ref C: 2024-11-10T01:31:37Z
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:37 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137; domain=.bing.com; expires=Fri, 05-Dec-2025 01:31:37 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afbb4
GET

https://www.bing.com/rp/L-nYmICjtADpEJxTNradKdlXr-c.svg

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/L-nYmICjtADpEJxTNradKdlXr-c.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 602
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300cf90a0945ddb7d30624fe6292b3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-oV77xIkU1/Tnp4FDm26noFuXdpf/4hBoBHUrnrvR3UQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afb03
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=FFE47836019D47B2B7F199CA244E4FFD&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=FFE47836019D47B2B7F199CA244E4FFD&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 60
content-type: application/json
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300cf9101444538a779907e049a83f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9YURm4cy6yVZHkNDQsA2yCe3cu73KuScgHf1aDmPi1A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: E90DF8C895734479B293BE04FEECFFA4 Ref B: LON601060102023 Ref C: 2024-11-10T01:31:37Z
date: Sun, 10 Nov 2024 01:31:37 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:31:37 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afbc1
GET

https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202297.d5afc0b
GET

https://www.bing.com/videos/vdasync?f=ch&mid=CB1F8F4993BF534BB395CB1F8F4993BF534BB395&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=CB1F8F4993BF534BB395CB1F8F4993BF534BB395&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202299.d5b0270
GET

https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202300.d5b0668
GET

https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202301.d5b0924
GET

https://www.bing.com/videos/vdasync?f=ch&mid=D30752A050A50794002AD30752A050A50794002A&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=D30752A050A50794002AD30752A050A50794002A&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202301.d5b0b28
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:44 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202304.d5b156b
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202305.d5b1ce0
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:45 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202305.d5b1d6f
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202123&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:31:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202305.d5b1d71
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296122%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202296295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202296323%2C%22Name%22%3A%225%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296122%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202296295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202296323%2C%22Name%22%3A%225%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 417
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4df9b440de85284f9550fa2055
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LM0Ua1anWFHZ5cjKsu7d3eR24KCJ16n8GSHmN+S4q1E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:01 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3A9BC03251B16FBE23ECD50150486E77; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202381.d5c5786
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 341
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4d5f2b48838ab09c68174dfe9e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3ydt2qPP79D/XTHdhJaFpzj6/rlj9a95FtxmWMb6aII='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:01 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=283C69350BE360D20D797C060AA861F3; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202381.d5c57b2
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 325
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4dbe1f4911989eb8782ef9f94b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-aJLETZvoDRP7/ev1hmmaZqr4RcHc8nl8CsYq7QmWiTg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:01 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=26CD9322C98861781F378611C88F602E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202381.d5c5803
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 329
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4d04854ff883712c501c41982b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Jh+04i4hkTtIiOfaowJdNz0LOubm0JnRC6LE9B/Wvdo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:01 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=23776C0105FD6FEF2878793204E96E30; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:01 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202381.d5c5859
GET

https://th.bing.com/th?id=OIP.RIuGs7V854F7LP-0qbLC5QHaD-&w=200&h=107&rs=1&qlt=80&o=6&pid=3.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.RIuGs7V854F7LP-0qbLC5QHaD-&w=200&h=107&rs=1&qlt=80&o=6&pid=3.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 290
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4e0ea447439eea50cfd916c69b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ETVnVE+zl29nsRJ4HuSfsp6prBshVQ8XSzKB22mvWVg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:02 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2DDC312084266B35010A241385C76AE4; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202382.d5c5920
GET

https://th.bing.com/th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=298&h=248&c=10&rs=1&qlt=99&o=6&pid=23.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=298&h=248&c=10&rs=1&qlt=99&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 157
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4ea6354dbb900ea2d3ca9c4c80
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-d+p7YM5gBQjOTotdJJgQiHfTYyNr4cupzQzKxHoTzYY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:02 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=17509D10FADB69DA25CD8823FB1168D5; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202382.d5c59cc
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 115
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4e8ba7422ab8011f71ae7238d6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-a65V2qk2lnY0bXHC5699NKfe5A27UavLLI3WSqne06U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:02 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0AA0AFBF6CAA648F10BABA8C6D1665D4; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202382.d5c5a6c
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 116
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4e80a548c68fe65b8652b0bb9f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-tFj5PeDiAz1v6uT4/wneyXtBXjch3g/ypeQU6vdWUcE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:03 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0D6E990D18AD6CDE22CD8C3E190C6D33; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:02 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202382.d5c5b14
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 116
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d4f9e104ec5b9460d5c316a1287
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hiWOA7Zjkb5rIK0ht6IMYbwef2kIIfreB1IQNF/JhBA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:03 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:03 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=223CE5E59EDC61752ED0F0D69F7B6014; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:03 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202383.d5c5d3c
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296498%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296498%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 422
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d585c9642f6a2fe2277128dd642
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-xI9nS3Cww0uKK12Z7BygRZtu8NFaTBnKbVcwFY4E+eY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:12 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:12 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=057D010B652468C53D55143864C5690A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:12 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202392.d5c7c3d
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=FFE47836019D47B2B7F199CA244E4FFD&sid=3D06F3BEC48862CA11CEE68DC5B96311

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=FFE47836019D47B2B7F199CA244E4FFD&sid=3D06F3BEC48862CA11CEE68DC5B96311 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sid: 3D06F3BEC48862CA11CEE68DC5B96311
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013111
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 452
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5a54da4d458be9cd91c309f0fd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CSJPJerW8l7EV0/UKsqflQhZ22XIazf0gUkSp0sLkLM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:14 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=15B833F5CA6C6B8E1B3326C6CBFD6A16; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202394.d5c8278
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202296567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22647.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221508.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296597%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202296567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22647.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221508.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296597%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 314
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5a49a24c47a31304462851b9cf
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-q4IjNUmWfRgdqytAiPXIri25ctQVdPOV+QD+0JGMT+s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:14 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:14 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=279FBD188DBA604835DDA82B8C2B61F1; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:14 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202394.d5c8313
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202296607%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22HType%22%3A%22h%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202298114%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202296607%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22HType%22%3A%22h%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202298114%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 450
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5c0e59403e886368472387117e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UuE13cp6+H4rj9lvjaNm2maEu5NYIFE6BaepAY6nHKU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:16 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:16 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=10812FF1C38563693F373AC2C2CD6255; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:16 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202396.d5c8706
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19749
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 452
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5c69ef48108422458177136868
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8XgGWjYFX781omcnSf8AnSddnos6btiFYM98UutM4X4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:16 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:16 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1BA486DDD29469B137A193EED335680F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:16 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202396.d5c8856
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d2%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202300068%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d2%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202300068%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 450
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5e3b564d2aa9757f8347e20332
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ktavETu8YZ8ODQ+7sHA2P+x1a/STLIuYa/cOR7AoSHc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2F690E8092DE680D37611BB393446902; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202398.d5c8c78
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 730
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 455
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5ee35041af85c4596fcb5490a7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-B7hAOTIAx3nGJexu/TvTihoShXDqUV69WypsDKjB3dw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=011685042D36683B1EFE90372CFD69F9; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202398.d5c8d69
GET

https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d5%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202303064%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d5%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202303064%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 444
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5e16d34808b873896718b8c06f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pXx8RjgDTNeDhH2q9gQIufs744l1yZEHfe+1osjibWk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0D4F57578A556C8529A142648B1D6DFB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202398.d5c8dad
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 850
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 435
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d5fa07a4dd79b1ff212bf07f16b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-GbD0QUf21ISLsn8/4nszQ+GqDferwMEUEWB7CLpcCM4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:19 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:19 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=06E5C1EAB6BF63390B4DD4D9B7F762D7; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:19 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202399.d5c8e58
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 747
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 444
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d6230e142a395feaad580892fdf
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VXH5kiE/1db296hDemrN5EU059bP5D/TSbHUIZQmZMA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:22 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1DD4724068D16B672514677369356AB3; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202402.d5c95ed
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 455
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d62e03144bbbaf35ce881938824
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-J6WwfbSlSKX0PPRwaYu4NtKQud6y6lGObcYjK97MPU8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:22 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2D7AE44C6B0761F73189F17F6AD5603B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202402.d5c963d
GET

https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=aec71b410215436ca0fd7391770e5f0f&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=y&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=aec71b410215436ca0fd7391770e5f0f&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 425
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d62095f4115a2cf27a0cbbdaca6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cgvnWCeKevFiVIvv52mO//O1yf0qFGX1Pmk7xuvma8c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:22 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0E55FD7EF1BF6CAB01EDE84DF05E6D3C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202402.d5c9693
GET

https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=8561bcdd59e14f3b9f85341d96f93566&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=ya&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=8561bcdd59e14f3b9f85341d96f93566&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 450
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d62c1174e8dabf57430f08b785c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-iDmEdYThK6SuRNbHql1WjxpU2kc2mq5NqLHWP0EnW1Y='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:23 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=37C0C81FA6C76BD432CFDD2CA7346A0F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:22 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202402.d5c991c
GET

https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=29b5882cf1db486e96ea67b3e232feff&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yal&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=29b5882cf1db486e96ea67b3e232feff&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 414
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300d6346944b099537504e3ce263d9
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-agAoDwEfDxI5u1Th0LjCMnQcHBWwPSqWRL9ZN3VBvvQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:33:23 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:33:23 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3378E5CC0E9467C61BD9F0FF0FC06654; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:33:23 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202403.d5c99ae
GET

https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c377181af87e45688db22bf1b3103642&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c377181af87e45688db22bf1b3103642&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d4b
GET

https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=40faf4d27bd746128122fc21fb4c3469&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=40faf4d27bd746128122fc21fb4c3469&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d43
GET

https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=da9b3c1e40324049a811d54be8534f13&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=da9b3c1e40324049a811d54be8534f13&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d47
GET

https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=bb007134e8484e31b8d07e08e2b85e4d&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=bb007134e8484e31b8d07e08e2b85e4d&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d57
GET

https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=732bd2fcc28447a9b1a1ae903fed4393&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=732bd2fcc28447a9b1a1ae903fed4393&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d55
GET

https://www.bing.com/qbox?query=yall+watcv&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=d2713cdb9fec4526b6035d70d5d3bfcc&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcv&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=d2713cdb9fec4526b6035d70d5d3bfcc&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202470.d5d7d5d
GET

https://www.bing.com/qbox?query=yall+watcvh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=56a88b3a08474ec197c46ec564d01ad7&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcvh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=56a88b3a08474ec197c46ec564d01ad7&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202471.d5d8110
GET

https://www.bing.com/qbox?query=yall+watcvhi&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=999d5e84ade3492caedd0725cb6dfefd&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcvhi&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=999d5e84ade3492caedd0725cb6dfefd&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202472.d5d86ed
GET

https://www.bing.com/qbox?query=yall+watcvhin&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=af6d43407fae496592deaac3cd451d12&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcvhin&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=af6d43407fae496592deaac3cd451d12&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:34:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202477.d5d9f6e
GET

https://www.bing.com/qbox?query=yall+watcvhing&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=182e09a665b3477996467d37930af296&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcvhing&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=182e09a665b3477996467d37930af296&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 279
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300db0f520407ab46be69c51372ca7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qLsUcBkTcHSJLDfbv9ivo5IWKw88kkmh6jmizf+i7+0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:40 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3F7D484F8A506D811EB25D7C8B416CE7; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:40 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202480.d5da98d
GET

https://www.bing.com/qbox?query=yall+watcvhing%3F&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=267ca2a41dc64b13b8da9a6b0221e75b&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watcvhing%3F&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=267ca2a41dc64b13b8da9a6b0221e75b&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 416
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbb482a488991d52d33012428b7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-h4egpy0ZBUBgfRj9VG2Dze4vf/M46T3hQIYz8xpQwyc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1E25CA3FBFE46C0A30FCDF0CBEB36D07; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd571
GET

https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=27f813b1ca2c4c30b3c1c67ef40c3df9&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=27f813b1ca2c4c30b3c1c67ef40c3df9&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 300
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbb002e42b2a2289e19c4a42f05
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/MCX4RsvD5xKlRJo6Ecu7rg65TnirGGNuIaEh2CZrDM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=085C5DA59A4E6946008848969B736826; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd681
GET

https://www.bing.com/qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=57de5aec28bc4cb4bda594c9d7ed899e&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=57de5aec28bc4cb4bda594c9d7ed899e&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 330
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbb0c934b55b79beb7c343a011e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+7vySfrb88WBisxISBULd6CyrycWlixDMDOa4EorAlI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1A55C4D2A45C698E36EBD1E1A5966874; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd753
GET

https://www.bing.com/qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c17d856b9199453eab67efe78051ab38&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c17d856b9199453eab67efe78051ab38&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbbff624dc88472ecb62725960f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-GSSsji/XqINi44G+ZJPYDqP8PF506s4URc1jwJGVdHg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1FAB245AFB2369520BF13169FAE968F1; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd7b2
GET

https://www.bing.com/qbox?query=bruh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=10722eaf60304ea1863bfca55acf9715&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bruh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=10722eaf60304ea1863bfca55acf9715&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 339
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbb01ac47679b70df7dadd4d317
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Kwi/EQU7CY0K6h+MfKSnceNjXYC8bNr4u7TjPqqojFo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3D2CB3016AAE6C290D7FA6326BE56DCB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd876
GET

https://www.bing.com/qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=5b9deb2c29a04e668777e7c6d306800c&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=5b9deb2c29a04e668777e7c6d306800c&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 338
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbbdd6641b59d4c6eb070cfecd7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-PnqENbSqyl8yrXMGxsXur+9NE0d6orKDtvR4A6lJcxA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:51 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=18CAC613A41E62F225C1D320A584630F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:51 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202491.d5dd904
GET

https://www.bing.com/qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7689d30dc6e84d2ba47cafe7db9fab51&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7689d30dc6e84d2ba47cafe7db9fab51&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 317
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbc6fef410d9f61a6077c932950
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fvSFHxo/P+p9iMIwdw+dyHsiWUEWsXenvEi8Tx2jbmg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:52 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2978E60DA71768EC1872F33EA6B66920; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:52 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202492.d5dda99
GET

https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=f93da20c38c24b93b750e6953f2f4f8d&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=f93da20c38c24b93b750e6953f2f4f8d&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbd3ec9472bb49892e3c911321e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cZJhUGNGjYwcJOvKXN4bJtVQngFT6a9Z/PH1iJgyiog='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:53 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0E9EDC6B6B5C61D03FBFC9586A936086; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202493.d5de108
GET

https://www.bing.com/qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=b030eb3c4f764b2fb96cdce140a27ef0&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=b030eb3c4f764b2fb96cdce140a27ef0&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 296
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbdab7a4f849c57e578951227a6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IsiotdZa5b7RoDxM4nzQ2y8588sWz5bNlTo/XbHmW4c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:53 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=208784E6699D64AB39FD91D5683B6502; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202493.d5de193
GET

https://www.bing.com/qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=db18eb75416d4927b11209314ceaa4d2&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=db18eb75416d4927b11209314ceaa4d2&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 293
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbdbebe4dd5872bd6289e01129a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-e9+sTkVc/Gwprc7igHym4MUqSxl1HS5ujxg0g3kwwhQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:53 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1AAF94626F3C603B319681516E9A6162; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:53 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202493.d5de2a3
GET

https://www.bing.com/qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=58b3ff9f5ca244c29d716003441dfbb4&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=58b3ff9f5ca244c29d716003441dfbb4&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 256
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbe24a74b93b73a97d271f6b06d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SaeXCMXa2Uj89Cx/EJXTRWWt186+L3G3KKNMbfqFz8k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:54 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:54 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1705ED92C11562A302C1F8A1C0DE63C7; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:54 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202494.d5de30f
GET

https://www.bing.com/qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=79b7edd6966d4cb58a7c61de52c141a7&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=79b7edd6966d4cb58a7c61de52c141a7&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 264
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dbf260645bfb1ddcbdc77690c5d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fCzGefykb7uIEML59yeLUZYbrZXCx4znrNSIt/jiewY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:55 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:55 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=01B5D215B3C46E9D3064C726B2296FC5; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:55 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202495.d5de8ef
GET

https://www.bing.com/qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c49b769892c242fdb9407fbe0e53aa4c&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c49b769892c242fdb9407fbe0e53aa4c&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 292
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc0b40c4c21b507e2348d669503
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-gkP6Sp3EjOI2FMxAGfnzWdWK8PJqDC7+nfLY7Ax6Lbw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:56 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:56 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2865D38737DA64463FF2C6B436106522; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:56 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202496.d5deee2
GET

https://www.bing.com/qbox?query=legend&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=3f1a38de28174889b8c7416145452cad&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=legend&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=3f1a38de28174889b8c7416145452cad&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 296
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc096024c39a33bb9da0af6947f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5Hg0aFJfkCg2p8cvQkYg8OnqVYzRAuTU2eFP2M7UgOo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:56 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:56 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=08B44C10EFBF66563FB65923EEA66748; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:56 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202496.d5defd2
GET

https://www.bing.com/qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=03c7cc4f4e2b4b9781d4c7ef9b6e0834&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=03c7cc4f4e2b4b9781d4c7ef9b6e0834&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc1b63349429b3e9e055e6592c6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XcnN/gcF5W012eqIE/Rss7YlNB5WEN4SqJeeKZw1TnY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:57 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3B04767AA20965041ABD6349A35E64BA; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202496.d5df055
GET

https://www.bing.com/qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7ef741a456d04e4191aba7ac3f8d0e07&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7ef741a456d04e4191aba7ac3f8d0e07&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc1c2334d2eba3e504837cb7845
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SwK6P/2GEt8O4zykrVBW1/3g1zleihIFu8Lshud5v1I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:57 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=317D9B3BFF676F1604918E08FE5A6E01; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202497.d5df1a2
GET

https://www.bing.com/qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c0ed6a06773c49138e85d9d1d0dfda88&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c0ed6a06773c49138e85d9d1d0dfda88&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 317
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc1524c4c109bfb602e292a8137
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-u6lPg3VCpN+2SDCW6vwgqvxkDDyv+3pOj9wKeCfFGNI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:57 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3A0FE444DFD6643A0AFCF177DE1C65C1; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202497.d5df223
GET

https://www.bing.com/qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=224fc598d51148c9878b1101f1faef4a&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=224fc598d51148c9878b1101f1faef4a&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 322
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc18be14f278ef2133bc765ef9b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-a37Cb7ExDbpstwH1apP0QfAIz3QC8yeinEsUksfxyVI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:57 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=26D5E4DC1D9E6B271D61F1EF1C8E6A76; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:57 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202497.d5df3d6
GET

https://www.bing.com/qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=eea9e53d4118426e8763f3902f17f6d2&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=eea9e53d4118426e8763f3902f17f6d2&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 338
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc266f9433b8af7c2bf8cb65306
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-9pV1r+Zq0AmG6YJmGm+xDhWnYvH9Js1DNAJlO915PWo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:58 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:58 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=185747DEA90168270CCA52EDA8566938; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:58 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202498.d5df903
POST

https://www.bing.com/fd/ls/ls.gif?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469518}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469518}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 339
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc350184f9fa7391821a6068072
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-tzFBw1SzpwbMZSdWQQ9xmZSfk81TV38MiyZrB56Qmu8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:59 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:34:59 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0A0D63FA8CC86703275E76C98D836644; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:59 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202499.d5dfb9b
POST

https://www.bing.com/fd/ls/ls.gif?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 406
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc525bd47caab15edbedf7f6e67
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-m9Qxem0beH29pZleTv8DeincLtAgsnyhYuFvv9lzvGc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:01 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:01 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=17E0EA77D7CA6F6138F2FF44D6336E2C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:01 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202501.d5e09e3
POST

https://www.bing.com/fd/ls/ls.gif?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 280
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dc9d83c4281b316b47523962a5d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-iTo5VbpEcYlUdNhm91qWJbB3Tu9jG6Hv39TIa2ixnEo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:05 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:05 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2A351EC25CF561753A1B0BF15DE16077; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:05 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202505.d5e1b9b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 750
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dca33584bdcb720be798c3be043
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dfhiJ+LJsL0GU/ZceiEOpDCnBY8sK0JyV2TAFBYNTMo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:06 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=24CFCA9049656DCA00C7DFA3485B6C2C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202506.d5e1d40
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 712
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 142
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcaadef49c1b68460fb196dde73
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-0AgABaPU+iVYhfP/bRYtQHVHfLKPxalrWzP2Fg7Slhg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:06 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:06 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13784E0FF2EA685900FA5B3CF3066909; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:06 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202506.d5e1fdb
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 736
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 118
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcb97914b0fbcd8b9a58fd32609
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-1AZ9sJ2iiii+tgOOWenSlIemNQHOnRGR7pfNB3Slyk8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1AC3E0925F096EEF2FABF5A15E986F63; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202507.d5e2397
GET

https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202470377%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202470377%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 117
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcbf6bb4cfda6a7982e033eb248
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+UJiOfvle2iuWDO3UVLu32EJUnOGsne9TQ57TR7IGto='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:07 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3AB4DDFE0FD661DC251DC8CD0EC360CE; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:07 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202507.d5e25d5
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 679
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 116
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcce214450da29bb9687a6d16ed
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NES37N+PhvwSN0F8w45roSZkKBHjG/bLGUgTRkeYLSI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=19ECC2D9546B68A60A98D7EA55FA6969; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202508.d5e2645
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 652
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 115
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcc407f4a6ba418632509d96e53
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZttI6RekQJRy74vj9LAJKcIVf+xy6Pqr8fISeNk1b0A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F88895DE4856EE40C929C6EE5D86FF8; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202508.d5e2711
GET

https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=54ed5a761b3748198dfdc422966b8235&oit=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=&language=en-US&pt=EdgBox&cvid=54ed5a761b3748198dfdc422966b8235&oit=0 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 114
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcc974543308d926bae9df4602c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-f5BJQLUxJ7cpWj1Eooo/8OUBMDpKhJLr2k6BiEX6Ozs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3627C1F97F2D61A306CAD4CA7E1260CE; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202508.d5e2771
GET

https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7de6ca800f3a47ec914993cbf20f74ce&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7de6ca800f3a47ec914993cbf20f74ce&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 142
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcca44e4bfab963417a5f7ef0ea
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6tbl8FbDLBQ5RGbO3m6WcFzS40HFsGigVtvOicNFkfg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=30E596A5FDEE60BF0AC18396FC176144; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202508.d5e27e5
GET

https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6e17b89c05894d258483ee289ed0542f&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6e17b89c05894d258483ee289ed0542f&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 339
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dccd47a4dfba08428469c3a5b76
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-HEEtbVWfZB4nE6mw0mSYybdWY0NiQlcJ09V7XY/yqmQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:08 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3133B752777F69263E0FA261766B68BD; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:08 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202508.d5e2927
GET

https://www.bing.com/qbox?query=i+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=331fc9cb92484ac08fac0613dba8b5ee&oit=4&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=331fc9cb92484ac08fac0613dba8b5ee&oit=4&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 303
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcd0a034ef7bb53087495f60501
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rkTlfV36U44hStktIQMJ+WaCaB3dhQPVwCKEUxipMIo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:09 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:09 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3F59CEFA3C1960053B3BDBC93DF461B2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:09 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202509.d5e2a55
GET

https://www.bing.com/qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=32ee344477ec4452be82e846e3d56599&oit=4&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=32ee344477ec4452be82e846e3d56599&oit=4&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 290
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dce56dc4c48845bdba972379f57
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+hQrt7dnOKPhK/Lpq06elODKDM1eeDX80Aon7jeXOcg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:10 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:10 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=11C303DD0B62642E3CEC16EE0A916562; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:10 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202510.d5e2cfd
GET

https://www.bing.com/qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=27e1fc1e12dd4ef0a1c94410ab6fb37b&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=27e1fc1e12dd4ef0a1c94410ab6fb37b&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:34:10 GMT
vary: Accept-Encoding
x-eventid: 67300dcef6bc4a99a80c5517531b91c5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AxWKgYWss9aYkOTmFw2iEFczuXyCEU8wKuUkDaEq0QA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:35:10 GMT
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202510.d5e2e5a
set-cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:35:10 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=125e9a8085054ed09c3ee112fc80d5c4&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=125e9a8085054ed09c3ee112fc80d5c4&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3074
GET

https://www.bing.com/qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4fcbfd9f7f6648a8a472159ebe6feec5&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4fcbfd9f7f6648a8a472159ebe6feec5&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3077
GET

https://www.bing.com/qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6ff799c1928a454d81a08d0f631f99bf&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6ff799c1928a454d81a08d0f631f99bf&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5064
x-check-cacheable: YES
cache-control: public, max-age=921766
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30cf
GET

https://www.bing.com/qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e3879cdc902744099cce3eeb37011b28&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e3879cdc902744099cce3eeb37011b28&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1079
cache-control: public, max-age=3669600
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30d0
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8ec909beebb9419083cea617a2a7917a&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8ec909beebb9419083cea617a2a7917a&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1064
x-check-cacheable: YES
cache-control: public, max-age=3669662
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30d1
GET

https://www.bing.com/qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=48d305c239984bb4991c1af2562026e2&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=48d305c239984bb4991c1af2562026e2&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 764
x-check-cacheable: YES
cache-control: public, max-age=5047816
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30d5
GET

https://www.bing.com/qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cf5f45e5b3d04135bbb6e7c597d4bc0c&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cf5f45e5b3d04135bbb6e7c597d4bc0c&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30cd
GET

https://www.bing.com/qbox?query=i+didntr+do+tr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e2547a8f29744854839ab2c6637b918f&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+tr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e2547a8f29744854839ab2c6637b918f&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30ce
GET

https://www.bing.com/qbox?query=i+didntr+do+trh&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=39cca3de1c8f49cea38a64865e57f461&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+trh&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=39cca3de1c8f49cea38a64865e57f461&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 837
x-check-cacheable: YES
cache-control: public, max-age=5047765
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30d6
GET

https://www.bing.com/qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3962c4e5a91047db95bd750da76aebc4&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3962c4e5a91047db95bd750da76aebc4&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30e3
GET

https://www.bing.com/qbox?query=i+didntr+do+trhat&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2e318871b2ef40529827bd673611fa8a&oit=4&cp=17&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+trhat&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2e318871b2ef40529827bd673611fa8a&oit=4&cp=17&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 690
cache-control: public, max-age=5047818
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30eb
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=db3dc929a221449984eae55a01a6e5f7&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=db3dc929a221449984eae55a01a6e5f7&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2280
cache-control: public, max-age=1241952
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30fa
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=73ce9ba67f264f9a9dfddadacda2f5d3&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=73ce9ba67f264f9a9dfddadacda2f5d3&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13905
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30d7
GET

https://www.bing.com/qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=31b985e361d240db90ca754d07289f89&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=31b985e361d240db90ca754d07289f89&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1143
x-check-cacheable: YES
cache-control: public, max-age=2099803
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30fd
GET

https://www.bing.com/qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f3edf2845751491aa97f51c255f68d0b&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f3edf2845751491aa97f51c255f68d0b&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1079
x-check-cacheable: YES
cache-control: public, max-age=4880475
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3100
GET

https://www.bing.com/qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3324a621ac0f4c3193b4bdb943b72009&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3324a621ac0f4c3193b4bdb943b72009&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 11051
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30e0
GET

https://www.bing.com/qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cbabc5e91d9a4364ac53e75fc72425f6&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cbabc5e91d9a4364ac53e75fc72425f6&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 14082
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30e1
GET

https://www.bing.com/qbox?query=i+didntr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8c1a7b83ab7f4372af7192d12bcb9177&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didntr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8c1a7b83ab7f4372af7192d12bcb9177&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13527
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30d8
GET

https://www.bing.com/qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b0ea3b776a0e4a78ab99b9e0d3618d2c&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b0ea3b776a0e4a78ab99b9e0d3618d2c&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 555
cache-control: public, max-age=5183950
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e30ff
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9190c9435b6f440dbb9f3aa6c62144ec&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9190c9435b6f440dbb9f3aa6c62144ec&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1065
cache-control: public, max-age=2015062
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e311c
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7f6e0b30c6ec44a5b84ed96634023e82&oit=4&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7f6e0b30c6ec44a5b84ed96634023e82&oit=4&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 17257
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e30e2
GET

https://www.bing.com/qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=05583c82bb534e66b861073e2a71dc2e&oit=4&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=05583c82bb534e66b861073e2a71dc2e&oit=4&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 698
cache-control: public, max-age=5183980
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3104
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=825ac562b2ee49e3bb9eeae86fe0b74a&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=825ac562b2ee49e3bb9eeae86fe0b74a&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1642
cache-control: public, max-age=209481
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e311e
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f682606682c043bfbf7f94b5343dfcc3&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=w&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f682606682c043bfbf7f94b5343dfcc3&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 434
cache-control: public, max-age=5183988
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3107
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wa&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=5ba513ced9fe4f87a7f143ee3cbc5143&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wa&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=5ba513ced9fe4f87a7f143ee3cbc5143&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 826
cache-control: public, max-age=5183998
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3112
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=77511540d14d47109ba6eb5c48d300dc&oit=1&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=77511540d14d47109ba6eb5c48d300dc&oit=1&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1771
x-check-cacheable: YES
cache-control: public, max-age=1449781
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3132
GET

https://www.bing.com/qbox?query=wannas+c&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=1a174cefb03845419d4439957d4b4c55&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+c&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=1a174cefb03845419d4439957d4b4c55&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2891
cache-control: public, max-age=1580357
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e314b
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9c03339e8bbc4d258b33a0906bede0cf&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9c03339e8bbc4d258b33a0906bede0cf&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 580
cache-control: public, max-age=1416728
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e314e
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3c3f4ac449e447c3a192039fb78b0f41&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3c3f4ac449e447c3a192039fb78b0f41&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 865
cache-control: public, max-age=730740
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e314f
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4023d257647f4d6080cc359cbe4d4ec5&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4023d257647f4d6080cc359cbe4d4ec5&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 592
cache-control: public, max-age=844360
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3151
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+creyanna+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=965db656420c4dc0b346c91e689939bb&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creyanna+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=965db656420c4dc0b346c91e689939bb&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 157
cache-control: public, max-age=312093
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3157
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+creyanna&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9b09328a444245e680d09e889839ff45&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creyanna&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9b09328a444245e680d09e889839ff45&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 503
x-check-cacheable: YES
cache-control: public, max-age=2229891
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3156
GET

https://www.bing.com/qbox?query=wannas+creyann&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=d20f314ea2ce40c29e8de486e1d6e7bd&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creyann&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=d20f314ea2ce40c29e8de486e1d6e7bd&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 550
cache-control: public, max-age=929967
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e316d
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+creyan&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=957766eae77146629497c4f5399f4669&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creyan&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=957766eae77146629497c4f5399f4669&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 873
x-check-cacheable: YES
cache-control: public, max-age=1551142
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3168
GET

https://www.bing.com/qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2ca5da6656e14ad293951e1ec2ee9c91&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2ca5da6656e14ad293951e1ec2ee9c91&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 467
cache-control: public, max-age=285345
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3171
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=08d9a492845746f4b8f45555ec655446&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=08d9a492845746f4b8f45555ec655446&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1379
cache-control: public, max-age=1492633
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3178
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+cre&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7d87c590a32049d0a5d084d5477e9acd&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+cre&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7d87c590a32049d0a5d084d5477e9acd&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1177
cache-control: public, max-age=1209584
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e316e
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b2c7005a9c694e738012d2f962674a73&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b2c7005a9c694e738012d2f962674a73&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1204
cache-control: public, max-age=1209553
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e3173
x-check-cacheable: YES
GET

https://www.bing.com/qbox?query=wannas+cry&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7741159540d9408a98f506476237c300&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=wannas+cry&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7741159540d9408a98f506476237c300&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3182
GET

https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3183
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:322,%22SE%22:-1,%22TC%22:-1,%22H%22:460,%22BP%22:463,%22CT%22:521,%22IL%22:19},%22ad%22:[-1,-1,1263,609,1263,4311,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:322,%22SE%22:-1,%22TC%22:-1,%22H%22:460,%22BP%22:463,%22CT%22:521,%22IL%22:19},%22ad%22:[-1,-1,1263,609,1263,4311,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1668
cache-control: public, max-age=1185650
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e31b0
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 345
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4953&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1629
cache-control: public, max-age=1418652
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e31b1
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A465%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A465%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1820
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:35:11 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202511.d5e31ba
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e31d7
GET

https://th.bing.com/th?id=OVP.VebnoBKBk2Idm_ZsP91N2QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.VebnoBKBk2Idm_ZsP91N2QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e31d8
GET

https://th.bing.com/th?q=Wanna+Cry+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e31dd
GET

https://th.bing.com/th?q=Wanna+Cry+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 16041
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dcf5b0a4b8ebbd15e5267bfcdba
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-N1crFp9r5f6C7DUOkWmvQIgpCeEn+UrueV/IFT/8WAc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:11 GMT
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e31de
GET

https://th.bing.com/th?q=Seventeen+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Seventeen+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300dcf60094ab79cc1980ab492624a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Ds3I2NOAy8mE+K8OC3++PSD2F/qJqDZTKoy49dBFUHc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300dcf60094ab79cc1980ab492624a|AFD:67300dcf60094ab79cc1980ab492624a|2024-11-10T01:35:11.704Z
date: Sun, 10 Nov 2024 01:35:11 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:35:11 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e320a
GET

https://th.bing.com/th?q=Don%27t+Wanna+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Don%27t+Wanna+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1005
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300dcf1ffe41bf91e3b03c77d50175
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AtPkkYR1CuMleX68fq6v1QBoNTT6aYhCSq61jv0uJz4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300dcf1ffe41bf91e3b03c77d50175|AFD:67300dcf1ffe41bf91e3b03c77d50175|2024-11-10T01:35:11.714Z
date: Sun, 10 Nov 2024 01:35:11 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:35:11 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:35:11 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3224
GET

https://www.bing.com/th?id=OIP.UBEahUQSxAGB2fzHoc4npwHaFj&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.UBEahUQSxAGB2fzHoc4npwHaFj&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e32d6
GET

https://www.bing.com/th?id=OIP.oaKjPNVF7l0l6meJzzqHhwHaD8&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.oaKjPNVF7l0l6meJzzqHhwHaD8&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e32da
GET

https://www.bing.com/th?id=OIP.XLHg39KYMZQrn3345pi2UwHaEn&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.XLHg39KYMZQrn3345pi2UwHaEn&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 23492
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300dcf2b714a5d952903c18908841f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZUo+zcF8QwUuHy8e3c1mx+iDuXQWFN1JOrywxjoxgMA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 2E8FEA56036F4F6CADC615388CB0FC6C Ref B: LON601060105042 Ref C: 2024-11-10T01:35:11Z
date: Sun, 10 Nov 2024 01:35:11 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:11 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e32c9
GET

https://www.bing.com/th?id=OIP.yd7jTv3o84GLYmaalH34jwHaDh&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.yd7jTv3o84GLYmaalH34jwHaDh&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3310
GET

https://www.bing.com/th?id=OIP.VgUYRJhItNL8JKkxIJZ5bgHaE7&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.VgUYRJhItNL8JKkxIJZ5bgHaE7&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3323
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e3326
GET

https://th.bing.com/th?q=Wanna+Cry+Ransom&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Ransom&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202511.d5e332b
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3346
GET

https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10197
cache-control: public, max-age=2276118
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e3368
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Wanna+Cry+Wallpaper&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Wallpaper&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10849
x-check-cacheable: YES
cache-control: public, max-age=2276158
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e3369
GET

https://th.bing.com/th?q=Wanna+Cry+Virus&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Virus&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3148
cache-control: public, max-age=1500727
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e336d
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Wanna+Cry+Meme&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Meme&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3363
GET

https://th.bing.com/th?q=Wanna+Cry+Background&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Background&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3366
GET

https://th.bing.com/th?q=Wanna+Cry+%ce%99%ce%9f%ce%a3&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+%ce%99%ce%9f%ce%a3&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3367
GET

https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5801
cache-control: public, max-age=372292
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e336b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.SDzjrdfYUwDHpZGcWG-AtgHaD4&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.SDzjrdfYUwDHpZGcWG-AtgHaD4&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3371
GET

https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3372
GET

https://th.bing.com/th?id=ODLS.a32cba3e-4b5b-4d95-bee4-4b9b2c3869db&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.a32cba3e-4b5b-4d95-bee4-4b9b2c3869db&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3373
GET

https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3365
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2814
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e336c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300dd0d1384083a749a5eaf2f16ccd
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-j9s1tKx9cBwdXZyHNNrHTR7nx1zjhMBBghqWN5O+DAs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EC65087B33C2459DA7F4524A308D15FF Ref B: LON601060107023 Ref C: 2024-11-10T01:35:12Z
date: Sun, 10 Nov 2024 01:35:12 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:12 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:12 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e3370
GET

https://th.bing.com/th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7579
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:35:12 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202512.d5e336a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202512.d5e33da
GET

https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300dd2a29247ae937ddefe72a9aafa
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3xf1c4Sn1FxKarP035dq+KSaz1N+QsBNGCidyfa5GDQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: FF73770FF9224F16927FB3A82A3593FC Ref B: LON601060107023 Ref C: 2024-11-10T01:35:14Z
content-length: 0
date: Sun, 10 Nov 2024 01:35:14 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:14 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3ad9
GET

https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3b25
GET

https://th.bing.com/th?id=OIP.ghTzgapFcYmFo70DrSeXxAHaEc&w=80&h=80&c=1&vt=10&bgcl=347134&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.ghTzgapFcYmFo70DrSeXxAHaEc&w=80&h=80&c=1&vt=10&bgcl=347134&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3b33
GET

https://th.bing.com/th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:34:14 GMT
vary: Accept-Encoding
x-eventid: 67300dd2426242cfac142d8da29c3c8c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UoUR2Yg/TuBsulTy/P65fKbygord/U1/rptx4bzWIQo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3b34
set-cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:35:14 GMT; Max-Age=7200; Secure
GET

https://th.bing.com/th?id=OIP.9JEtIsdy0bY9vWvs3VpP7wHaD4&w=80&h=80&c=1&vt=10&bgcl=405c9c&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.9JEtIsdy0bY9vWvs3VpP7wHaD4&w=80&h=80&c=1&vt=10&bgcl=405c9c&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3ba7
GET

https://th.bing.com/th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3baa
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2210%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2210%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3d5f
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3d70
GET

https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 873
x-check-cacheable: YES
cache-control: public, max-age=3669661
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e08
GET

https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 972
x-check-cacheable: YES
cache-control: public, max-age=3669711
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e09
GET

https://th.bing.com/th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3e04
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510376%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510377%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510381%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1034%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510376%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510377%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510381%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1034%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 891
x-check-cacheable: YES
cache-control: public, max-age=3669701
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e07
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1065
cache-control: public, max-age=2002838
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e0a
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510712%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510712%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3e0b
GET

https://www.bing.com/images/sbi?mmasync=1&ig=D86EF285B83C4B11A3244491DAAE137D&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=D86EF285B83C4B11A3244491DAAE137D&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3e05
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=D86EF285B83C4B11A3244491DAAE137D

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=D86EF285B83C4B11A3244491DAAE137D HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2895
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e0c
x-check-cacheable: YES
POST

https://www.bing.com/rewardsapp/reportActivity?IG=D86EF285B83C4B11A3244491DAAE137D&IID=SERP.5064&q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=D86EF285B83C4B11A3244491DAAE137D&IID=SERP.5064&q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 160
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=6&ihpd=0&ispd=6&rc=18&rb=0&gb=0&rg=200&pc=15&mtu=0&rbb=0&g=0&cid=&clo=0&v=6&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:31:37.0807619+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=18&RB=0&GB=0&RG=200&RP=15
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: SRCHS=PC=U531
cookie: bm_sv=5A3FE90B30F59CC100D2548503D25CA5~YAAQp3d7XA0ZzAmTAQAAYu+1ExmKPo0PUjk4AYRwObudlBS4Oh8W1UDkTGKjcaAnEIE7Ry92WTZYCZfyHwjRovku4SS/a7CqAASLqrawedMryDR5YfQeSyMByBZy4yltstDDQY5D8LYzhLW3m4sDkczF6ILi4HH0YxgtlxM8kmViwo7Vi4Txov+JeE7V7LflKwgdN6CTKC7Au+lDaIcgADe82v/wkIakKmmKVMJjuPETvwb/96f0jkfEvxEgbg==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 157
cache-control: public, max-age=453598
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e68
x-check-cacheable: YES
GET

https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=1%2c5%2c7%2c11%2c10%2c11%2c3&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5801&DataSource=DefaultProd&iid=SERP.5801&ig=D86EF285B83C4B11A3244491DAAE137D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=1%2c5%2c7%2c11%2c10%2c11%2c3&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5801&DataSource=DefaultProd&iid=SERP.5801&ig=D86EF285B83C4B11A3244491DAAE137D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 157
cache-control: public, max-age=660429
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e70
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1392
cache-control: public, max-age=555389
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e6c
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1143
cache-control: public, max-age=543725
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e6b
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1771
x-check-cacheable: YES
cache-control: public, max-age=630053
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e84
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1050
cache-control: public, max-age=1151203
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e96
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5259
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e6a
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10327
x-check-cacheable: YES
cache-control: public, max-age=478877
date: Sun, 10 Nov 2024 01:35:14 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202514.d5e3e06
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=BingPages
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202296&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3e9c
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510776%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510887%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgImgAns%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202510975%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510776%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510887%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgImgAns%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202510975%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3e9d
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3eba
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3ebb
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3eb9
GET

https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 16043
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd2859f43e1840d20ff2f2f7378
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ljMNRK2Qzp9YoNbO81cuIWOIlZ3XYtYwvbQ8745X30o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:14 GMT
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3eb8
GET

https://th.bing.com/th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1006
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300dd217ef4e80b6e9134eccfb42c6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7WJM5sIFz47pDuVT+S098AmkgaBoc9TTSQfBu8LXV5o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300dd217ef4e80b6e9134eccfb42c6|AFD:67300dd217ef4e80b6e9134eccfb42c6|2024-11-10T01:35:14.981Z
date: Sun, 10 Nov 2024 01:35:15 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:35:15 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3edb
GET

https://th.bing.com/th?id=OVP.bc0utrGmLwmEZ67GzhHUiwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.bc0utrGmLwmEZ67GzhHUiwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 773
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300dd3ce4b46f49c2374ae374d57f9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rRFTh9NXdh1yKNKyJB6uCN77fDkUEOG3DKnrtp6Mj5k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300dd3ce4b46f49c2374ae374d57f9|AFD:67300dd3ce4b46f49c2374ae374d57f9|2024-11-10T01:35:15.001Z
date: Sun, 10 Nov 2024 01:35:15 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202514.d5e3ed3
GET

https://th.bing.com/th?id=OVP.49_4-FQUO9KSOL5M1B9SKQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.49_4-FQUO9KSOL5M1B9SKQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3f5e
GET

https://th.bing.com/th?id=OVP.xxf3lqsjFLR8u5tnDa0OWQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.xxf3lqsjFLR8u5tnDa0OWQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3f5d
GET

https://th.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 23476
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300dd3959f4548ab2b7dee49b8c5a7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Tyo1YNeTu4iZDhJc84poeLkEMw8/PeT0MjppASq3FCc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 62A0C7BD8F314CE298F123050BD77691 Ref B: LON601060103034 Ref C: 2024-11-10T01:35:15Z
date: Sun, 10 Nov 2024 01:35:15 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:15 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3f58
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 38272
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd3c9a54c2c9fb71e799965eef3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lmCCbF4ljc23mPYoi8Xye0kMh/Jx5/Ht9OYXsEDaTys='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3f93
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fcd
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fcb
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013137
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fda
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202511125%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22708%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221450%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511163%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202511125%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22708%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221450%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511163%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3ffd
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D86EF285B83C4B11A3244491DAAE137D&ID=SERP,6318.1&url=%2Fsearch%3Fq%3Dwannacry%26FORM%3DAWRE

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=D86EF285B83C4B11A3244491DAAE137D&ID=SERP,6318.1&url=%2Fsearch%3Fq%3Dwannacry%26FORM%3DAWRE HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7770
x-check-cacheable: YES
cache-control: public, max-age=458342
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4013
POST

https://www.bing.com/fd/ls/ls.gif?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202513172}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202513172}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8991
x-check-cacheable: YES
cache-control: public, max-age=895866
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4014
GET

https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22SpellSuggestion%22,%22FID%22:%22CI%22,%22Name%22:%22Clickable%22,%22Text%22:%22requery%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22SpellSuggestion%22,%22FID%22:%22CI%22,%22Name%22:%22Clickable%22,%22Text%22:%22requery%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7281
x-check-cacheable: YES
cache-control: public, max-age=41383
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4016
GET

https://www.bing.com/search?q=wannacry&FORM=AWRE

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=wannacry&FORM=AWRE HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4697
x-check-cacheable: YES
cache-control: public, max-age=129114
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4017
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7445
x-check-cacheable: YES
cache-control: public, max-age=129123
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4018
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 21164
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4009
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 771
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7920
x-check-cacheable: YES
cache-control: public, max-age=893831
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4015
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4010
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:294,%22SE%22:-1,%22TC%22:-1,%22H%22:377,%22BP%22:381,%22CT%22:382,%22IL%22:24},%22ad%22:[-1,-1,1263,609,1263,3685,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:294,%22SE%22:-1,%22TC%22:-1,%22H%22:377,%22BP%22:381,%22CT%22:382,%22IL%22:24},%22ad%22:[-1,-1,1263,609,1263,3685,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4011
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 362
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4311&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4025
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202513739%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202513740%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A429%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202513739%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202513740%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A429%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9987
cache-control: public, max-age=292099
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4038
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4026
GET

https://th.bing.com/th?id=OVP.cBxkQqml49Tv0QTzsW6cDAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.cBxkQqml49Tv0QTzsW6cDAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4029
GET

https://th.bing.com/th?q=Wanna+Cry+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7403
x-check-cacheable: YES
cache-control: public, max-age=893945
date: Sun, 10 Nov 2024 01:35:15 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202515.d5e4034
GET

https://th.bing.com/th?q=Wanna+Cry+Ransomware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Ransomware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4012
GET

https://th.bing.com/th?q=Wanna+Cry+Cyber+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Cyber+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300dd36bfc47bbb462e68431abbf5d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3i5x5OSQBfebiD9fENaFXvNDF3vcZBnOLcd5aS+6jz8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4F4B800A6AC644A1B2BF5267EB26C1A6 Ref B: LON601060104054 Ref C: 2024-11-10T01:35:15Z
date: Sun, 10 Nov 2024 01:35:15 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:15 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:15 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e402a
GET

https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 610
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd3968e441081f635a1d4d8602f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CV+OwZrDfEm4Ca5PdEdDBP3ztUuRbayIT85mHMjnMS4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fb6
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 629
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd370c046ae82a8bdce90b33981
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AzGR36OjpoN0nwpadVXFppuW5S07UqJLV+DJG4EmGHM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fb8
GET

https://th.bing.com/th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=3d3224&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=3d3224&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 586
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd3a0684c25819fc0a07c0db07e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-QEYoiKq/VPf2ROcp+hwHquL2GWMiKkR3W4PBd3+wcZ0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fb7
GET

https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 60
content-type: application/json
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
x-eventid: 67300dd30b164b85904da075fcae12d4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-xYK/XMPbgcXCZJRshsV9iyYHzPN2YtRgpIu5k5gCvSc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 2D386625B9B443A7B9763728F46D5DDD Ref B: LON601060108060 Ref C: 2024-11-10T01:35:15Z
date: Sun, 10 Nov 2024 01:35:15 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:15 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e403c
GET

https://th.bing.com/th?id=OVP.l79z_2vc89Xr9hwrX2ppoQIIEk&w=216&h=120&c=7&bgcl=a47840&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.l79z_2vc89Xr9hwrX2ppoQIIEk&w=216&h=120&c=7&bgcl=a47840&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 601
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd3be8d4479851950dc5ffc3318
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6rxkNZKlJvasZJ14YTSs5/jIRw1We846K/p2zOX8Rpc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fa8
GET

https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 598
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300dd364464041961ed24bfb3c6fda
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-r80+QZKNBJmSjmOsyBGbvZTcyjVVhnM+9e3KFzOizFI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e3fb9
GET

https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202515.d5e4069
GET

https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202516.d5e4397
GET

https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202517.d5e4879
GET

https://th.bing.com/th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:26 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202526.d5e7509
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Sat, 02 Nov 2024 11:50:24 GMT
last-modified: Tue, 24 Sep 2024 06:11:01 GMT
etag: 0x8DCDC5FAA0C3E31
cache-control: public, no-transform, max-age=60633
content-length: 644
content-type: image/gif
content-md5: HGU2zuFG7AoIwp9z9fxz2A==
x-ms-request-id: 2ff3b732-601e-004e-3620-152f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7361602.1729689441.eeaf154
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:35:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202530.d5e8611
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:30 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202530.d5e860e
GET

https://www.bing.com/images/sbi?mmasync=1&ig=5FF1A294070E4343AB61F805E0E049E5&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=5FF1A294070E4343AB61F805E0E049E5&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 206

content-type: video/mp4
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-range: bytes 0-403114/403115
content-length: 403115
x-check-cacheable: YES
cache-control: public, max-age=2359042
date: Sun, 10 Nov 2024 01:35:30 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202530.d5e8615
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513753%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A808%2C%22time%22%3A817%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202513992%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513753%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A808%2C%22time%22%3A817%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202513992%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1960
content-type: image/svg+xml
content-md5: lOxVXuFtjjXpIAll7kgzvA==
last-modified: Mon, 15 Aug 2022 17:45:21 GMT
etag: 0x8DA7EE5ED1F56FD
x-ms-request-id: 7c27555a-001e-00bb-2c31-c4a084000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.565cda17.1690899375.255be5ab
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.5d5cda17.1694874810.1afe5694
akamai-grn: 0.b08e1402.1696360426.1b34534
akamai-grn: 0.55281102.1700232259.1839b9d2
akamai-grn: 0.4b281102.1702526738.c0841ccd
akamai-grn: 0.4eba1302.1703096022.4645b734
cache-control: public, no-transform, max-age=6064441
expires: Wed, 20 Mar 2024 15:59:52 GMT
akamai-grn: 0.4b281102.1704885951.12f50653
timing-allow-origin: *
date: Sun, 10 Nov 2024 01:35:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202531.d5e8680
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:31 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202531.d5e87a7
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 376
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de55826436f88d9d8bb2aa874ee
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CavTP7CcZozuEBZXuhyeoXv0fB59dxQnsVX3RvEhpmI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:33 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202533.d5e91c5
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:33 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202533.d5e929d
POST

https://www.bing.com/rewardsapp/reportActivity?IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.5064&q=wannacry&FORM=AWRE

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.5064&q=wannacry&FORM=AWRE HTTP/2.0
host: www.bing.com
content-length: 68
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=7&ihpd=0&ispd=7&rc=21&rb=0&gb=0&rg=200&pc=18&mtu=0&rbb=0&g=0&cid=&clo=0&v=7&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:11.7395538+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=21&RB=0&GB=0&RG=200&RP=18
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: bm_sv=12B3DD8F00F93EF4340ED71D23AD0BF0~YAAQp3d7XBoZzAmTAQAADP21ExmddSbvH6pZRnqUcWixsMAjhrddWLsekx3kLEt1g9S5GXyc/dyjwLX0VkWayJGAnI3z1t0WWJp18r4VRmhE3plYh+mbqUwtbZTGig9u3EWmUlEwo/KslQCZ8fBFcrtJoz5UY3m+i2Ddm3h/sFVljhRB8C+5zStUxNb6ClVRnS60u6gRS4Z5TDnZLFkFQuuBHBpZezMEzerXm7EtpDacGr6exTX+jLdF5GRFig==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e9451
GET

https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=14%2c5%2c7%2c10%2c16%2c8%2c6&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5802&DataSource=DefaultProd&iid=SERP.5802&ig=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=14%2c5%2c7%2c10%2c16%2c8%2c6&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5802&DataSource=DefaultProd&iid=SERP.5802&ig=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 376
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de6d165484984f693ec39f349de
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-aHK0A256mj120Gg38ANRD+83rgnwmYyBb70uXW1j1fM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:34 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e945f
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e957e
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 429
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de625a94c679bfd8915d1685a21
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Nat1fZHTmc+ukeiZ+mz4KzZ4Udg+MbA4ARPLRfIKggw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:34 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e956d
GET

https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=5FF1A294070E4343AB61F805E0E049E5&SFX=1&iid=SCPKG

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=5FF1A294070E4343AB61F805E0E049E5&SFX=1&iid=SCPKG HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 409
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de69edd4095a9a758232a6363f3
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-g+0/CkwtXs/Ec5iYA+CN74ySsJFXVBVIQC+kVs2CKW4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:34 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e95c1
GET

https://www.bing.com/videos/vdasync?f=ch&mid=697D117EA0437200D023697D117EA0437200D023&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=697D117EA0437200D023697D117EA0437200D023&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:34 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e962b
GET

https://www.bing.com/videos/vdasync?f=ch&mid=1CB90E227854DB891A7D1CB90E227854DB891A7D&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=1CB90E227854DB891A7D1CB90E227854DB891A7D&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 419
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de68a1247a7becf07cdf630fec4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lJpc3PZtcXKrUxp0VFKVQAmuxog4QeN+ETuI2ZIHoP4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:34 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e9618
GET

https://www.bing.com/videos/vdasync?f=ch&mid=FFF6B0C42B1D02484FD6FFF6B0C42B1D02484FD6&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=FFF6B0C42B1D02484FD6FFF6B0C42B1D02484FD6&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 421
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de6cee24de8a1cc04eb3f56a8a4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VA7r7g+Nz6PI8E2HAZ43e0yMTBAN8l6s1W+B5VQakZE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:34 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202534.d5e9670
GET

https://www.bing.com/videos/vdasync?f=ch&mid=A7863877FFEC272D5E22A7863877FFEC272D5E22&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=A7863877FFEC272D5E22A7863877FFEC272D5E22&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9778
GET

https://www.bing.com/videos/vdasync?f=ch&mid=90EADB78CF2FECCABB3F90EADB78CF2FECCABB3F&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /videos/vdasync?f=ch&mid=90EADB78CF2FECCABB3F90EADB78CF2FECCABB3F&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 426
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de78550422a81e6337d669485f3
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-KSIwLMymkiTKVYZ40Gszk6/4xLS9CQI8G/bi6PquWmw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:35 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9795
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 425
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de753c346e4aef06f5fe8e7e44a
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-vYQAQ/blsAqgMo5ukX099flWAgjxZpgGVc0o8DbJfXo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:35 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e97dd
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9847
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 420
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de78b6547c29dc9335f83eda2f4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lrCwBIL5SiGQ0T9yFTk7NgZimBWvqLnHopCw204dqWk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:35 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e988c
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202511&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 413
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de7d36a4dfd81bf9774f67d15ab
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5oOauiqugdURbxEjN3qxwDyV1Wf2uJ8RYNEB1ZLKlqc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:35 GMT
set-cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9957
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514027%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514040%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514133%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514210%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202514255%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514027%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514040%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514133%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514210%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202514255%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e99d3
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:34:35 GMT
vary: Accept-Encoding
x-eventid: 67300de7779e4d48acdccfa354c177d5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-n6kcnAQjjn3tnGVvftRf7NchKJN6kHlODF0RTThtpXA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e99dd
set-cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:35:35 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9a45
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202514301%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202514301%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:35 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202535.d5e9a49
GET

https://th.bing.com/th?id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9c6e
GET

https://th.bing.com/th?id=OVP.XS8kyo2DWpZs5G4Bvbs1GgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.XS8kyo2DWpZs5G4Bvbs1GgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9c6d
GET

https://th.bing.com/th?id=OVP.xiaC0O1F9gsxjpX96BCmagHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.xiaC0O1F9gsxjpX96BCmagHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1968601
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d0b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.vMU80F5gZ9B1yClRvjcvjAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.vMU80F5gZ9B1yClRvjcvjAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1968541
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d0c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.o2A5Z5dsC3TOZdZNgV5mOAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.o2A5Z5dsC3TOZdZNgV5mOAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 873
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d0d
GET

https://th.bing.com/th?id=OVP.M0l5qgeFlM8ZAFmzOkeCFgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.M0l5qgeFlM8ZAFmzOkeCFgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7253
x-check-cacheable: YES
cache-control: public, max-age=732373
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d0e
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514312%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514312%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1064
x-check-cacheable: YES
cache-control: public, max-age=4738603
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d0f
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514320%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514320%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 902
x-check-cacheable: YES
cache-control: public, max-age=4738634
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d10
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514321%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514321%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9d09
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9d0a
GET

https://th.bing.com/th?id=OVP.ikFNDh05uBn9OLgL1znnkAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.ikFNDh05uBn9OLgL1znnkAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9d11
GET

https://th.bing.com/th?id=OVP.KP6OXSHSNTkbJcpSt93daQFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.KP6OXSHSNTkbJcpSt93daQFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1064
x-check-cacheable: YES
cache-control: public, max-age=4738666
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d2e
POST

https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=5FF1A294070E4343AB61F805E0E049E5&sid=3D06F3BEC48862CA11CEE68DC5B96311

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /mysaves/collections/get?Comp=VideoReco&PIG=5FF1A294070E4343AB61F805E0E049E5&sid=3D06F3BEC48862CA11CEE68DC5B96311 HTTP/2.0
host: www.bing.com
content-length: 78
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sid: 3D06F3BEC48862CA11CEE68DC5B96311
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013512
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 718
x-check-cacheable: YES
cache-control: public, max-age=4738612
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d34
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202514324%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22580%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221149%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514396%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202514324%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22580%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221149%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514396%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=2199774
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d3b
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19252
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1392
cache-control: public, max-age=350083
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d3c
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202514413%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202514413%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=1968614
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MEM_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d3d
x-check-cacheable: YES
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 669
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1064
x-check-cacheable: YES
cache-control: public, max-age=4738680
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d38
POST

https://www.bing.com/fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1731202529970,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1731202529970,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 910
cache-control: public, max-age=2013583
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d5d
x-check-cacheable: YES
GET

https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 973
cache-control: public, max-age=654282
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d5f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OM.ETx9hoM1F0X3Xw_1730571357&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OM.ETx9hoM1F0X3Xw_1730571357&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
range: bytes=0-

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2627
cache-control: public, max-age=2227102
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d60
x-check-cacheable: YES
GET

https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 686
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d57
POST

https://www.bing.com/fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22TS%22:1731202530346,%22DU%22:580,%22THLT%22:352,%22RCLT%22:null,%22MOS%22:16456,%22MOT%22:580,%22IsMT%22:1,%22VPST%22:495,%22VDT%22:468,%22MaxVPT%22:580,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22TS%22:1731202530346,%22DU%22:580,%22THLT%22:352,%22RCLT%22:null,%22MOS%22:16456,%22MOT%22:580,%22IsMT%22:1,%22VPST%22:495,%22VDT%22:468,%22MaxVPT%22:580,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1360
cache-control: public, max-age=1209563
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d49
x-check-cacheable: YES
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry&cp=8&csr=1&zis=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry&cp=8&csr=1&zis=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 877
x-check-cacheable: YES
cache-control: public, max-age=1515684
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d5e
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2342
cache-control: public, max-age=1871656
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d77
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202532639%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202532706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202532843%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Cig%3AABEDC2B095EE4271894304D3CE409C0B%22%2C%22AnswerInfo%22%3A%22HS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202532920%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533367%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A20205%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202533380%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202532639%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202532706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202532843%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Cig%3AABEDC2B095EE4271894304D3CE409C0B%22%2C%22AnswerInfo%22%3A%22HS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202532920%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533367%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A20205%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202533380%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1752
x-check-cacheable: YES
cache-control: public, max-age=919000
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d78
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9d81
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20d&cp=10&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20d&cp=10&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1017
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9d75
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%2Cig%3A679924C54A63439D97B795D4CE6A2DE5%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A10%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533708%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%2Cig%3A679924C54A63439D97B795D4CE6A2DE5%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A10%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533708%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9d80
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20do&cp=11&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20do&cp=11&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 16042
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300de8c8884071939f509080906571
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-tnHNW8WJPY+cx14YSwUdtEa9RjF0YEyZOiSGgrK7wXA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:35:36 GMT
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9dab
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20dow&cp=12&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20dow&cp=12&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9dc1
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A11%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533759%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A12%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22429%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A2%2Cig%3AC4D668808A704E2ABEC74F372F580595%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533810%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A11%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533759%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A12%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22429%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A2%2Cig%3AC4D668808A704E2ABEC74F372F580595%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533810%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9dcf
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20down&cp=13&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20down&cp=13&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9dce
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A3%2Cig%3A61880C7B1B634972A1DE6226615F9066%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22419%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%2Cig%3AD8318348B6AF4ACD8BEF00FB0384E21B%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A13%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22D8318348B6AF4ACD8BEF00FB0384E21B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22421%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%2Cig%3A0F0E5BA47F964F26B6B3BCFC33506C5E%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A3%2Cig%3A61880C7B1B634972A1DE6226615F9066%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22419%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%2Cig%3AD8318348B6AF4ACD8BEF00FB0384E21B%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A13%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22D8318348B6AF4ACD8BEF00FB0384E21B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22421%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%2Cig%3A0F0E5BA47F964F26B6B3BCFC33506C5E%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 1004
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300de8be6e4b27b1bdb0d9bc8c5a0f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-eCCgLArr2Bl0yI2MlflT7hAfYmxwxRpRYLic6Kw7X7U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300de8be6e4b27b1bdb0d9bc8c5a0f|AFD:67300de8be6e4b27b1bdb0d9bc8c5a0f|2024-11-10T01:35:36.443Z
date: Sun, 10 Nov 2024 01:35:36 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:35:36 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:35:36 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9dd0
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downl&cp=14&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downl&cp=14&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300de82c044801a336ab4a0a9c8145
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-EcrIqRQPrXGg83AnfR/8Fw4P3YubAfshZJUfj1EY3yU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300de82c044801a336ab4a0a9c8145|AFD:67300de82c044801a336ab4a0a9c8145|2024-11-10T01:35:36.431Z
date: Sun, 10 Nov 2024 01:35:36 GMT
set-cookie: _C_ETH=1; expires=Sat, 09 Nov 2024 01:35:36 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9db6
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downlo&cp=15&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downlo&cp=15&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9ec5
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A14%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220F0E5BA47F964F26B6B3BCFC33506C5E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534194%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22426%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%2Cig%3A05E3FEFD464040EAA666F4652EF00B13%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A15%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2205E3FEFD464040EAA666F4652EF00B13%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534308%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A14%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220F0E5BA47F964F26B6B3BCFC33506C5E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534194%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22426%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%2Cig%3A05E3FEFD464040EAA666F4652EF00B13%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A15%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2205E3FEFD464040EAA666F4652EF00B13%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534308%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9ed8
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downloa&cp=16&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downloa&cp=16&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 37666
x-check-cacheable: YES
cache-control: public, max-age=909955
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9f29
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20download&cp=17&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20download&cp=17&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7993
x-check-cacheable: YES
cache-control: public, max-age=623717
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9f2a
GET

https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22AsResponseLength%22%3A%22425%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%2Cig%3A6E5FE9C53C8C4F87B64968EB4AC80BB2%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A16%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%226E5FE9C53C8C4F87B64968EB4AC80BB2%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534428%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22420%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%2Cig%3A35CB4CF24F924B4FBD3B54ADD1C85E91%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534634%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534662%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22AsResponseLength%22%3A%22425%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%2Cig%3A6E5FE9C53C8C4F87B64968EB4AC80BB2%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A16%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%226E5FE9C53C8C4F87B64968EB4AC80BB2%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534428%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22420%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%2Cig%3A35CB4CF24F924B4FBD3B54ADD1C85E91%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534634%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534662%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9740
cache-control: public, max-age=872138
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_HIT from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9f2c
x-check-cacheable: YES
GET

https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9ef4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 5676
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f26
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f27
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f28
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 725
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry&FORM=AWRE
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9559
x-check-cacheable: YES
cache-control: public, max-age=764335
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9f2b
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:292,%22SE%22:-1,%22TC%22:-1,%22H%22:330,%22BP%22:359,%22CT%22:361,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4398,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:292,%22SE%22:-1,%22TC%22:-1,%22H%22:330,%22BP%22:359,%22CT%22:361,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4398,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f2f
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 384
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3685&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f30
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A433%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535240%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A433%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535240%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3011
x-check-cacheable: YES
cache-control: public, max-age=2276773
date: Sun, 10 Nov 2024 01:35:36 GMT
x-cache: TCP_MISS from a92-123-119-167.deploy.akamaitechnologies.com (AkamaiGHost/11.6.5-0c617a4be13e71cac2c90d10d87ecf54) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.a7777b5c.1731202536.d5e9f2d
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535244%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535244%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f2e
GET

https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300de8b2234ae6bad7f1302859d6a6
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8jksbVERYSvNR3hPt/pexKl/txnqmXiqOpRp8E7FqaI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 74C570745462457A8A208C6EFEE66A4B Ref B: LON601060104042 Ref C: 2024-11-10T01:35:36Z
date: Sun, 10 Nov 2024 01:35:36 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:35:36 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536; domain=.bing.com; expires=Fri, 05-Dec-2025 01:35:36 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f31
GET

https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202536.d5e9f72
GET

https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:37 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202537.d5ea1a8
GET

https://th.bing.com/th?id=OVP.J9EM7WCo2Pm6ijrc4rhPDwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.J9EM7WCo2Pm6ijrc4rhPDwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:41 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202541.d5eb3c9
GET

https://th.bing.com/th?q=Wanna+Cry+Download+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Download+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:35:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202551.d5ee65d
GET

https://th.bing.com/th?q=Ransomware+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Ransomware+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1567
content-type: application/x-javascript
cache-control: public, max-age=15552000
content-encoding: br
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
vary: Accept-Encoding
x-eventid: 672feb336a214ea2886d0a92c2ab7f7b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-xrxw194hlcHumtYiLkhbugr+tVkFz3FFq1cfm1HU06U='; base-uri 'self';
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f16c8
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1747
content-type: application/x-javascript
cache-control: public, max-age=15552000
content-encoding: br
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
vary: Accept-Encoding
x-eventid: 672feaf8c7634c7da56cc6dbbeb7e6c1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-97t8OFYXUDRU/AjlItXkMFHOvoM5kOgMmOgQzm331Vk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f16ca
GET

https://th.bing.com/th?q=Wanna+Cry+Virus+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Virus+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 2757
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300e0223bd4213972f5b578090364c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-xyHNxA1HXvoRCPjYvJrQo0a3bOglkLkD3VyNXRLKJT8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 566F84EEE06F4E4EB444707E19783570 Ref B: LON601060102029 Ref C: 2024-11-10T01:36:02Z
date: Sun, 10 Nov 2024 01:36:02 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:02 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f16f3
GET

https://th.bing.com/th?q=Petya+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Petya+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 13089
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300e02cb2f4113aa448370d23527a0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WziY0VHDuSWwVNQLKjbRyjxwQnZibYBhiUqnQxFDw2M='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 6F69DBDB24A44EDC9398606286D77EEA Ref B: LON601060103040 Ref C: 2024-11-10T01:36:02Z
date: Sun, 10 Nov 2024 01:36:02 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:02 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f16ec
GET

https://th.bing.com/th?q=Wanna+Cry+Download+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?q=Wanna+Cry+Download+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Sun, 10 Nov 2024 23:52:52 GMT
last-modified: Tue, 24 Sep 2024 06:22:37 GMT
etag: 0x8DCDC61494121A3
cache-control: public, no-transform, max-age=184777
content-length: 2974
content-type: image/png
content-md5: IahO/qaNOE6EY5qyB+q4UQ==
x-ms-request-id: 63cf0d0c-b01e-002a-4590-219fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=92.122.154.99,b=226869706,c=c,d=1729278320,h=200,k=1,l=51,n=GB_EN_LONDON,o=20940,r=52,p=2974,j=[[a=10.122.154.59,b=226869706,c=p,d=1729278320,h=200,k=2,l=48,m=0,r=51]]],[a=92.122.154.59,b=1126201530,c=p,d=1729278320,h=200,k=30,l=18,n=GB_EN_LONDON,o=20940,r=48,p=2974,j=[[a=95.100.98.65,b=1126201530,c=c,d=1729278320,h=200,k=3,l=14,m=0,r=17]]],[a=95.100.98.61,b=132681408,c=c,d=1729278320,h=200,k=1,l=4,n=IE__DUBLIN,o=20940,r=5,p=2974,j=[[a=20.60.205.196,b=132681408,c=o,d=1729278320,h=200,k=0,l=4,m=0,r=4,p=2974,t=cus]]]
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f172c
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Sat, 09 Nov 2024 12:23:42 GMT
last-modified: Tue, 24 Sep 2024 06:15:49 GMT
etag: 0x8DCDC60559A3D8B
cache-control: public, no-transform, max-age=16225
content-length: 1829
content-type: image/svg+xml
content-md5: sAZWXV7m7XOEndvGVe3qMg==
x-ms-request-id: b77445f0-501e-0064-3dee-145a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-amd-bc-debug: [a=92.122.211.70,b=1094893840,c=c,d=1727889159,h=200,k=2,l=38,n=GB_EN_LONDON,o=20940,r=40,p=1829,j=[[a=10.122.211.93,b=1094893840,c=p,d=1727889159,h=200,k=10,l=21,m=2,r=34]]],[a=92.122.211.93,b=1456237293,c=p,d=1727889159,h=200,k=8,l=16,n=GB_EN_LONDON,o=20940,r=24,p=1829,j=[[a=20.60.205.196,b=1456237293,c=o,d=1727889159,h=200,k=0,l=15,m=0,r=15,p=1829,t=cus]]]
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f172a
GET

https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Wed, 13 Nov 2024 23:08:45 GMT
last-modified: Tue, 24 Sep 2024 05:55:36 GMT
etag: 0x8DCDC5D82C8D71F
cache-control: public, no-transform, max-age=431007
akamai-amd-bc-debug: [a=2.19.160.194,b=467507024,c=c,d=1729019651,h=304,k=1,l=132,n=GB_EN_LONDON,o=20940,r=134,j=[[a=20.60.205.196,b=467507024,c=o,d=1729019651,h=200,k=4,l=114,m=0,r=119,p=2652,t=cus]]]
content-length: 2652
content-type: image/png
content-md5: WrkWJlk87o95pyRlU1T3Cg==
x-ms-request-id: a44ee92d-201e-0042-6bff-1ac184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.92901002.1728556175.8fbc543
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f172b
GET

https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

expires: Tue, 05 Nov 2024 19:48:29 GMT
last-modified: Mon, 14 Oct 2024 19:32:12 GMT
etag: 0x8DCEC86E7491049
cache-control: public, no-transform, max-age=272806
content-length: 2144
content-type: image/png
content-md5: Z+C+izL4Lrqm8Hojg8JfEw==
x-ms-request-id: ef5da1d1-201e-000d-6b2f-23059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.92777b5c.1729495223.1675e5c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f172d
GET

https://th.bing.com/th?id=OIP.7-K9p1J5229HSjdnoWSwsgHaDt&w=80&h=80&c=1&vt=10&bgcl=45d37b&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.7-K9p1J5229HSjdnoWSwsgHaDt&w=80&h=80&c=1&vt=10&bgcl=45d37b&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f173a
GET

https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:36:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202562.d5f1739
GET

https://th.bing.com/th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300e03d8d242e092419f4428a59316
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-V32ojuZ6VNbWiTf5PaIVCwmnqK0iLo4R2ut3UbOqLUE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B3D5C11163EC424B9D7C86B477ACE7C4 Ref B: LON601060102060 Ref C: 2024-11-10T01:36:03Z
content-length: 0
date: Sun, 10 Nov 2024 01:36:03 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:03 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202563.d5f1af6
GET

https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1176
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 005F162F40C944409C67E638C0797FBD Ref B: LON601060102060 Ref C: 2024-11-10T01:36:03Z
date: Sun, 10 Nov 2024 01:36:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202563.d5f1b2a
GET

https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:36:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202564.d5f1b4c
GET

https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:36:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202564.d5f1b4b
GET

https://th.bing.com/th?id=OIP.SZtw-kinzO-J9_yBstv7awHaJZ&w=80&h=80&c=1&vt=10&bgcl=4524fb&r=0&o=6&pid=5.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OIP.SZtw-kinzO-J9_yBstv7awHaJZ&w=80&h=80&c=1&vt=10&bgcl=4524fb&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 442
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e21cfca4b56bb5c46f82c68591c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bbQx/097lsal4WZwmwPt0W7OXzd0XESfoiULJe7OGFg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0A5B64B6A35362A21AD87185A29663B9; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202593.d5f7ba3
GET

https://th.bing.com/th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 411
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e211cc1488da33af61b2241b3ed
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ReB+DjoMdh7tQA8re1hOFW+dyOPDUZaFrNx7RLaXQRI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:33 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1263B93EC85868120B86AC0DC992690A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202593.d5f7dde
GET

https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 341
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e22d14c40cba16b16bcc6485606
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-aTbERoiNMJy9KQ1ggc9rFsrwT0q65aXcjBpxIdkapBY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=336637A0F241610D1BBE2293F33C60D5; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202594.d5f7fdc
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 329
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e22bf2443bcbee5b7dac3b75827
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7215igrBWc5rVngdz7bFI3vAN3rIOlbGWnCCYH2A5A4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1809F8849A8F69DC181FEDB79B4468EA; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202594.d5f80ef
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 290
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e22f2ea44489694506a5d1a7d06
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LCmnEZ8+r/r/DTH3nGSdnNOy7LFWVZbeIHoH2NtJTR8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3D40F54DD4FB66D539FBE07ED53E6742; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202594.d5f8204
GET

https://www.bing.com/images/sbi?mmasync=1&ig=CB30D7EB8D1C4C4085509D3ABD42FE95&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /images/sbi?mmasync=1&ig=CB30D7EB8D1C4C4085509D3ABD42FE95&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 308
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e22ad924729bf504be75371b8c7
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RD6CwBv28NALA8zj2+7X3pr5RaJhj8V4RudkHRPd0EU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3A9DECA47E49631B0AC7F9977F5C628E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202594.d5f82eb
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=CB30D7EB8D1C4C4085509D3ABD42FE95

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=CB30D7EB8D1C4C4085509D3ABD42FE95 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 326
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e22be3a4fc590a320f38c317ae4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zdNfy4YDl4UA+aDqqRgEM27S/nXA3s4mZDJWT0yWDeE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:34 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2B20B9AD4E126EC21DCBAC9E4F7C6FD8; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202594.d5f836d
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535252%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A753%2C%22time%22%3A755%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535252%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A753%2C%22time%22%3A755%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2323ba471dab671da0e2fcfad0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-4SqzEuwW6Y91lkxGyr01FW3/4G9SQ4l6Aj3XWyPEn0Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13223B9FEF926AAF336D2EACEE596B82; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202595.d5f842f
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A755%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A755%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 322
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e234d5e45a49d05c073ed2e2c42
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-T7WhrW6gE7zbe7BNwaSzu+Qa2s7NHCezlA911q98sYU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=029D5A4931376782180A4F7A3059667E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202595.d5f8614
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A756%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535479%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A756%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535479%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 304
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e230d3d4c09af93cfcba2a82c78
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WWusA9H1ssUs4ds9r0DWlIVPz3AWPmquXLIMRpe6iLs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F9274A3C6F6638F36E46190C7E262FC; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202595.d5f86c4
POST

https://www.bing.com/rewardsapp/reportActivity?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&IID=SERP.5064&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /rewardsapp/reportActivity?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&IID=SERP.5064&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
content-length: 235
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=8&ihpd=0&ispd=8&rc=24&rb=0&gb=0&rg=200&pc=21&mtu=0&rbb=0&g=0&cid=&clo=0&v=8&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:15.0027083+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=24&RB=0&GB=0&RG=200&RP=21
cookie: _C_ETH=1
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: bm_sv=8BB2B7D8F9A8C5FD13DE40B6909B0738~YAAQp3d7XIkZzAmTAQAAQlG2ExmOIE0sAcQeVUhef4mDEFkqjwA58M7ut+dMkOMB1fY/QUM0kZREkl6knxETlYoq4aHj37aMMi2Vyp42t/BB8uroLr92jdP6RD2f8bX5l4bIjgdPfs0L+F7PWZt0o13zkklJCMX4lmkdyIF9rYqtiBhGZySkLdp5QVOyhVg00xRCMr+qL3GFJrRdgMmJ1cBykriBhtloY0Cr5/Am4qf0oW8EyJnk4bvBOiisBQ==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 223
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e236eea4b40a236fc1787825299
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/DPgzOiUJ6ARgeJPHaPvSjisb2aZULrvjnlxsg4bnJM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:35 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=18924CDBEE5B68FA04DC59E8EF8969F8; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202595.d5f8707
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 193
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2487194f2f84c1849cca818e92
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rmQJ/x2WBB/01rEKgAyvstiI/Jv8ooza4JOIeCVeIik='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:36 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0ED8AC88446361A410F0B9BB455E6037; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:36 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202596.d5f88c0
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 193
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e29ac1344c8981ea94d5d6f0eb8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SWbI18UFc8t3ae4H/itVZm5973F+7yp8DOt8in0wdNU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:41 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:41 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0447C482B9946E4F2501D1B1B8106F9F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:41 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202601.d5f9d56
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535505%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202535628%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535505%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202535628%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 223
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2ad96d4b96b21d2c53e15b68bc
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lMgghFOcQvh3StfNTi/T7eYDJ4NiYpd65DxX6yyZpso='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=214CD557E22B6EB919DEC064E32C6F51; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5f9e8d
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 304
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2a2baf4dbb8b3385fed9b7dbdd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-R7D7CA1Hp20g7ptPrAv97FOopi4k2NCbUXSVjX8/wAI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3FD201A640F1672D26D914954187664C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5f9efb
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 322
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2ab3f047f7a6f3627461105a36
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-C0arvM9KpLj12Q3K3F1Ow8hxmjWeqpqQG+WfCIUpymk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3D74875E218C654F0192926D207F6419; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5f9fad
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2af384478bab80055100f7137e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SgBScKT2s+0Lrh7Is0I1ITeWOYftILE3Ow+YlHFMzGI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=244752D178FA60A53FBA47E2798C6178; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5fa056
GET

https://th.bing.com/th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 326
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2a4d9c4c6c9d6628026f341ff6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bT+V/TL21S8WNEaAn6WCi1kOie+CS+SMcUQN+paYsqI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0D779E63CAFC679A10898B50CBAB6692; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5fa0ff
GET

https://th.bing.com/th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 308
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2a64d341ab985b7ce153edde56
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XH8NUH+TJECZOVY1S2h/JZlREr2VKauvNu4aL0JEF3Q='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:42 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1AF4ABDDB7FD6C962036BEEEB60E6D13; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5fa180
GET

https://th.bing.com/th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 290
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2ac31943a4a553ae3e1a1a18eb
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-HiURpKe+rKNGYCZwKT1NOqy1yl6aSYLCmWsXTXtpp/A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=087F2B99BCBA6DE818D53EAABDCC6C78; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:42 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202602.d5fa1fc
GET

https://th.bing.com/th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 329
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2b9b00491c88f919b95768646f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UZ1fDji1sSnGFJqGuKN0bT6G+I1bsb9MUWcaG/H/fLA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=04103551231E6DC02AAC206222ED6CEF; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202603.d5fa2b9
GET

https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 325
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2b3c704a828e07828ad986c5ea
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-NjqKDQegP0nIj3n5KgpaMmL/Rsr4feMg2XZ3HcFBAWg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2A84B9F4F6EE69962444ACC7F71D68DF; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202603.d5fa3ee
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 341
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2b3f6b4361b4ae27de9d32bddd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-93OGZCWe1kSuwWKk5qzd00LqbTWM79FexXQoijOUcVs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3DE38FDD383F6EC700199AEE39F46F43; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202603.d5fa561
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 417
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2b67874e809e8d4d6928236f7a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Psfr3SlDNdTkEKC8fVmOpFCp8okrnTE5RBfL25xk6ts='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=038E8E13549C65EC26B59B2055CB6498; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202603.d5fa5d8
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535704%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535704%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 411
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2bcfbe4301978284ade57f37e0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-v1mwzi5bifqcBAxrzMu8/BFSS+/7UBQhOAA1BUDLaSk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3E48D4A9A21061311AC2C19AA39460F2; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202603.d5fa697
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013515
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video

Response

HTTP/2.0 200

content-length: 442
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e2c8ca346fa8d4e6474a6681822
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/G8d5mkfM2W8yaRljRtk1JbJLRSz790WCSBVmYQLFDU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:36:44 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:36:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2112E11675EA6C1D205CF425744B6D51; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:36:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202604.d5fa730
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22984%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535786%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22984%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535786%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536

Response

HTTP/2.0 200

content-length: 417
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e896cdb42bc86c1d076d2cbfa45
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8hS2aqAIIEH85c9mQ+Sl0/HQ9Fo3LzaDNMzH9GK443s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:38:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:38:17 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=22784351773C617436F956627668609D; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:38:17 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202697.d6121a4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 18402
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202514&PRVCW=1280&PRVCH=609
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536

Response

HTTP/2.0 200

content-length: 269
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e8aacc74f8eb582405ad637133d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6tUQPBts2zDT2IaDHmlolhtQUyMbbsg0Y3xwR1mjTMo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:38:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:38:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0BED277C4F0869520693324F4E1468CC; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:38:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202698.d612326
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 779
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 287
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e8a3b804895bb3aff52734d1610
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZFEy/6XOQ+YaTNVgmaUZxb4fclIY/K0NClEcL5jd5vo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:38:18 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:38:18 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=149EA0BCB7796BF83FD4B58FB60F6A2E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:38:18 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202698.d612453
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 737
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 474
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300e8b067746b5ae02685b070ee620
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WDLnu7VNvS91udIpUGFCsyBrn3emIyKI6Xoy3NZAc54='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:38:19 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:38:19 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3A6BD1B318C8601B0707C48019296143; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:38:19 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.a7777b5c.1731202699.d612587
GET

https://www.bing.com/sa/51195484/Blue/BlueIdentityDropdownRedirect_c.js

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /sa/51195484/Blue/BlueIdentityDropdownRedirect_c.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/sa/51195484/Blue/HamburgerServicesHeaderFlyout_c.js

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /sa/51195484/Blue/HamburgerServicesHeaderFlyout_c.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/hamburger/scfo?ver=51195484&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=&IID=SERP.5067&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /hamburger/scfo?ver=51195484&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=&IID=SERP.5067&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/Identity/Dropdown?n=1&IID=SERP.5068&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /Identity/Dropdown?n=1&IID=SERP.5068&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/rp/MnHJON9xUYXpg-poLvycfocMWOA.svg

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/MnHJON9xUYXpg-poLvycfocMWOA.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/rp/9roWR2D5ePtJMzD9tbaESvO2JXw.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/9roWR2D5ePtJMzD9tbaESvO2JXw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/rp/R8ErSC7kK_3o4eRM-pP2JlReVkE.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/R8ErSC7kK_3o4eRM-pP2JlReVkE.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/rp/1bS66LcKydbjw6xnNUaVfMtxlhg.png

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /rp/1bS66LcKydbjw6xnNUaVfMtxlhg.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ID=SERP,5214.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ID=SERP,5214.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/ck/a?!&&p=e7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /ck/a?!&&p=e7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.149:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1975
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=16a76d391cc04f96981b2b670b352cc1&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=16a76d391cc04f96981b2b670b352cc1&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=dcf1ddacba444884acf47c6f73c09fdf&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=dcf1ddacba444884acf47c6f73c09fdf&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=83e0ae25c8614ed2b6efd68d0a8e6211&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=83e0ae25c8614ed2b6efd68d0a8e6211&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=869ce2b03f4f47929acab445652c0e36&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=869ce2b03f4f47929acab445652c0e36&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e07e4bf1c89542a4b60852155510b896&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e07e4bf1c89542a4b60852155510b896&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=108c664b106c464081e1fdb1e5d45c8f&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=108c664b106c464081e1fdb1e5d45c8f&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=167ca8fb39be4aaab379fbf4e9ab2ea6&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=167ca8fb39be4aaab379fbf4e9ab2ea6&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8423a4b934c847ab9f628ea43d72bbc4&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8423a4b934c847ab9f628ea43d72bbc4&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0776949589cc4c9ca2fd9dc522e04a23&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0776949589cc4c9ca2fd9dc522e04a23&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d5590049b1b54d88942a813a2404b390&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d5590049b1b54d88942a813a2404b390&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=f3e0020d371d4be19aef2578b7b63241&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=f3e0020d371d4be19aef2578b7b63241&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e65886746df04184a2bd85c185d8bf1a&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e65886746df04184a2bd85c185d8bf1a&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=4267150002804e9a83ccf0beba18baa5&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=4267150002804e9a83ccf0beba18baa5&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7443c47eddb94ca7882b32aa1d0beae3&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7443c47eddb94ca7882b32aa1d0beae3&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=c896b20df9fa4fa08cdf9edcbb4d54cd&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=c896b20df9fa4fa08cdf9edcbb4d54cd&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=36ffe3648f9e449385e2a2908889bc93&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=36ffe3648f9e449385e2a2908889bc93&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=053fd24708724bccb688fe4b21ecd1db&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=053fd24708724bccb688fe4b21ecd1db&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7a10b47f6cc64a2e8b4116aa4c69db27&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7a10b47f6cc64a2e8b4116aa4c69db27&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=ffb018559a134e32bb4aeeaf8844f695&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=ffb018559a134e32bb4aeeaf8844f695&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0e8d34f671c84cd9bf1116695ef1fa17&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0e8d34f671c84cd9bf1116695ef1fa17&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e9ca5f454c3f40a5a82a038d86fc3538&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e9ca5f454c3f40a5a82a038d86fc3538&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8c11ba5da9ee4dccbdf6cc924542f792&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8c11ba5da9ee4dccbdf6cc924542f792&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=99e4f86f1e9f4f66bfe2a58f5d958f77&oit=4&cp=6&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=99e4f86f1e9f4f66bfe2a58f5d958f77&oit=4&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d2554ef7777346889bcd573b522a5bb6&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d2554ef7777346889bcd573b522a5bb6&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=903246c17bba4160b5d0104a53b423df&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=903246c17bba4160b5d0104a53b423df&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=b04df29890e14bd1811edee0575b90e5&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=b04df29890e14bd1811edee0575b90e5&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8344510e3cd5464381230ecc2aa8198e&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8344510e3cd5464381230ecc2aa8198e&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=2e3a4b2b16504c689a844dc0a6053c4f&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=2e3a4b2b16504c689a844dc0a6053c4f&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=edbf9a47d62e4d20ba56ce85c8c826c7&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=edbf9a47d62e4d20ba56ce85c8c826c7&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=f8c127aed964448f94b545577c294c50&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=f8c127aed964448f94b545577c294c50&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=9c69efb9661e4e3fa1fecf00fe3d5732&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=9c69efb9661e4e3fa1fecf00fe3d5732&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=uhhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=a0db66704c9843c58e131af8d4cfb6c6&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=uhhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=a0db66704c9843c58e131af8d4cfb6c6&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=37610e7c69c4452da1676e1fcf98891d&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=37610e7c69c4452da1676e1fcf98891d&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=84a1dbb7cd024dd2aa40026472092503&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=84a1dbb7cd024dd2aa40026472092503&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
GET

https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=8520b6cbc918431c9845a0ad97531fad&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

92.123.128.149:443

Request

GET /qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=8520b6cbc918431c9845a0ad97531fad&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
DNS

149.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

149.128.123.92.in-addr.arpa

IN PTR

Response

149.128.123.92.in-addr.arpa

IN PTR

a92-123-128-149deploystaticakamaitechnologiescom
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.146
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.194

e86303.dscx.akamaiedge.net

IN A

92.123.128.164

e86303.dscx.akamaiedge.net

IN A

92.123.128.133
GET

https://r.bing.com/rp/VDdfQYc6v56ozpdKB9krtilmPJU.br.css

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/VDdfQYc6v56ozpdKB9krtilmPJU.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 6996
content-type: text/css
content-encoding: br
content-md5: L1YQn7MytVUbZkzNfOkThA==
last-modified: Thu, 07 Nov 2024 11:52:25 GMT
etag: 0x8DCFF22A581294A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 28d90f4e-001e-0055-3446-3101e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.ad777b5c.1731019682.75c29eb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=235808
expires: Tue, 12 Nov 2024 18:58:37 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea26e7
timing-allow-origin: *
GET

https://r.bing.com/rp/RMR1gT-owPhjdj5T7QIDjVzDF_U.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/RMR1gT-owPhjdj5T7QIDjVzDF_U.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: VvkhcjFZmc5E7PrGAQWsKQ==
last-modified: Tue, 05 Nov 2024 18:05:45 GMT
etag: 0x8DCFDC478ADC2EC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5b6622cd-501e-0064-6239-305a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 219
vary: Accept-Encoding
cache-control: public, no-transform, max-age=120040
expires: Mon, 11 Nov 2024 10:49:09 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2772
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:49 GMT
etag: 0x8DCDC64632A6EF0
content-length: 323
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +CLmYDPZ4qSTibcD/NDa/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e20be22e-d01e-0013-4000-17df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=200726
expires: Tue, 12 Nov 2024 09:13:55 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2774
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 11 Oct 2024 08:54:30 GMT
etag: 0x8DCE9D251FB9A0F
content-length: 8973
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +mAHwIlCPLfLfUex2kszWg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e4cfb58c-501e-006f-5b08-1c4244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.591a1202.1729691612.3d31bce5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=115838
expires: Mon, 11 Nov 2024 09:39:07 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2776
timing-allow-origin: *
GET

https://r.bing.com/rp/CUqtgSTS9Z8_EvkEN5_3O3AydtU.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/CUqtgSTS9Z8_EvkEN5_3O3AydtU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:37:17 GMT
etag: 0x8DCDC6355B25846
content-length: 2633
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BqDy58++KpP6pd5VjlogiA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ad8bcf2-301e-005d-4e31-171a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=62485
expires: Sun, 10 Nov 2024 18:49:54 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2777
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 864daaff-c01e-000c-0411-180461000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=101605
expires: Mon, 11 Nov 2024 05:41:54 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2778
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:13:56 GMT
etag: 0x8DCDC687406483A
content-length: 2426
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: E6VRkNYBWPjLg+NxAtCPwQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cb02b4b-901e-0014-2967-1729f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=173604
expires: Tue, 12 Nov 2024 01:41:53 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2775
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:19:21 GMT
etag: 0x8DCDC60D4123841
content-length: 250
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FoisUan6I6x8k5j8xOd43Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c4c6dce-901e-0079-4ea2-1483da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=318610
expires: Wed, 13 Nov 2024 17:58:39 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2784
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5fa04812-b01e-002a-02f0-159fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=73382
expires: Sun, 10 Nov 2024 21:51:31 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2786
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:10 GMT
etag: 0x8DCDC62330B5348
content-type: text/javascript; charset=utf-8
content-md5: dbzAhNDtA54biTyiiODCKw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5109d0a2-e01e-0010-1398-16dc76000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4908
cache-control: public, no-transform, max-age=289193
expires: Wed, 13 Nov 2024 09:48:22 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2787
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:33:01 GMT
etag: 0x8DCEC8704585E3B
content-length: 64372
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: w8DrXgREl1d77JG1lw9tMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 066305fa-601e-0023-5960-1f855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=210828
expires: Tue, 12 Nov 2024 12:02:17 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2788
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 22 Oct 2024 09:25:45 GMT
etag: 0x8DCF27B81C1AA69
content-length: 69560
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +y8CwQfO4rTyKG1SjSO5Tg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5067e288-d01e-003a-6ba2-24a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.87221002.1729620880.4bb4de0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=332828
expires: Wed, 13 Nov 2024 21:55:37 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2789
timing-allow-origin: *
GET

https://r.bing.com/rp/121raEt8--NA5hc0p8GXzGcrGvM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/121raEt8--NA5hc0p8GXzGcrGvM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Sep 2024 12:41:09 GMT
etag: 0x8DCDD5F54E641FF
content-length: 1204
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IZbFUNKxAIylYfr267f+Iw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b30f05fa-e01e-001b-7af1-17c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=386659
expires: Thu, 14 Nov 2024 12:52:48 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2785
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
content-length: 430
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ed11950f-201e-0042-2291-15c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=286839
expires: Wed, 13 Nov 2024 09:09:08 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-length: 714
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=366688
expires: Thu, 14 Nov 2024 07:19:57 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d52007ef-d01e-0031-380a-16b147000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=200403
expires: Tue, 12 Nov 2024 09:08:32 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-length: 156
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 785e5805-d01e-003a-287a-15a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=140412
expires: Mon, 11 Nov 2024 16:28:41 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
cache-control: public, no-transform, max-age=268615
expires: Wed, 13 Nov 2024 04:05:24 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf18684d-701e-0078-63bc-188227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=344704
expires: Thu, 14 Nov 2024 01:13:33 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea278f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b58b846c-901e-001f-45b8-163180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=60669
expires: Sun, 10 Nov 2024 18:19:38 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2790
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=292473
expires: Wed, 13 Nov 2024 10:43:02 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2791
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:11 GMT
etag: 0x8DCDC5D73F196CA
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FXbNzL5WiMdS7y/N9ZEDfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b6ee9de-001e-0038-62f2-14abc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=153102
expires: Mon, 11 Nov 2024 20:00:11 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2792
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4c8af66e-001e-0033-6cab-16b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=189942
expires: Tue, 12 Nov 2024 06:14:11 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2793
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 399
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:58:56 GMT
x-eventid: 672daa4d8a124f619fd9efc8037a4750
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0B0
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BXMwj/r+M5Dj2O/vYtKcEMIkmso4UZKkvFlrDQTVa8c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=275978
expires: Wed, 13 Nov 2024 06:08:07 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2794
timing-allow-origin: *
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 692a9535-601e-0067-1a7a-1e5937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=109504
expires: Mon, 11 Nov 2024 07:53:33 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2795
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/awRIKLY04rWw5wNlVL186SolQSo.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/awRIKLY04rWw5wNlVL186SolQSo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:39:06 GMT
etag: 0x8DCDC6396975487
content-length: 7069
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yrT84kD84PN8304R0Pvg0w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81fda646-101e-0027-201d-1770d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=67045
expires: Sun, 10 Nov 2024 20:05:54 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2796
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 678b32bb-e01e-005f-480a-17186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=73452
expires: Sun, 10 Nov 2024 21:52:41 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2797
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:35:45 GMT
etag: 0x8DCDC631EE7C495
content-type: text/javascript; charset=utf-8
content-md5: XDB88L/1tOMJK/y+pV86vg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efe55695-301e-0056-7b44-1802e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1727
cache-control: public, no-transform, max-age=137400
expires: Mon, 11 Nov 2024 15:38:29 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2798
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-length: 626
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 942ab205-401e-0070-59f5-179954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=296896
expires: Wed, 13 Nov 2024 11:56:45 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea2799
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C2FB005
content-type: text/javascript; charset=utf-8
content-md5: eh63mOkIBbFjgAwCOpOf1w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: af804365-b01e-0003-36c0-15e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 854
cache-control: public, no-transform, max-age=71509
expires: Sun, 10 Nov 2024 21:20:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea279c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:36 GMT
etag: 0x8DCDC5F9B563C48
content-type: text/javascript; charset=utf-8
content-md5: 10AmaEgXjFITcl8HP2hwyQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ffd16390-401e-0034-3860-154538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 194
vary: Accept-Encoding
cache-control: public, no-transform, max-age=56435
expires: Sun, 10 Nov 2024 17:09:04 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea279d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:36 GMT
etag: 0x8DCDC633D5EAA6A
content-length: 282
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ZsrYRIS4X28M0gd5bb2Heg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81189a7e-d01e-0057-6fda-15031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=280561
expires: Wed, 13 Nov 2024 07:24:30 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea279e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
content-length: 462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8defdcf7-101e-004a-72ef-15daf7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=68066
expires: Sun, 10 Nov 2024 20:22:55 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea279f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 672daa4d6fb24231b8428abb5966fd2b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E09E
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jqCESHTkgU9sK5H22Ep6zngn3uvZPGwZviCo7BNVHRY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=275918
expires: Wed, 13 Nov 2024 06:07:07 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a0
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fcf8c82-301e-003b-4d01-17a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=55642
expires: Sun, 10 Nov 2024 16:55:51 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 781b7082-c01e-0061-7803-1bae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=154203
expires: Mon, 11 Nov 2024 20:18:32 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-length: 375
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 24a5e4a3-801e-0029-2ae5-149cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187707
expires: Tue, 12 Nov 2024 05:36:56 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ff7c48-201e-0024-6697-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=114372
expires: Mon, 11 Nov 2024 09:14:41 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f7b32df-801e-006d-2071-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=297028
expires: Wed, 13 Nov 2024 11:58:57 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 213
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WEjo6St2+BsB3AUDglK12Q==
last-modified: Tue, 24 Sep 2024 07:15:09 GMT
etag: 0x8DCDC689FBBE351
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e287049f-a01e-0053-1a97-15f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=324744
expires: Wed, 13 Nov 2024 19:40:53 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-length: 446
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f3f8833-a01e-0071-0101-1598a9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=371439
expires: Thu, 14 Nov 2024 08:39:08 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:51:44 GMT
etag: 0x8DCDC655A8820C3
content-length: 12109
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OuXcJlOLJ5YKncHzThxbVw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b1d29246-501e-0046-6931-163406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=157854
expires: Mon, 11 Nov 2024 21:19:23 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:48 GMT
etag: 0x8DCDC651552FCB4
content-length: 64993
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cQ12N8x+IbYv0+/mq6H9Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4397e947-601e-006c-4741-164143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=81227
expires: Mon, 11 Nov 2024 00:02:16 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27a9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:03:08 GMT
etag: 0x8DCDC5E8FFA02AC
content-length: 20129
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dqPx6aRSVk4Pjc5sDuER6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2ddf672-501e-006f-0c9a-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70129
expires: Sun, 10 Nov 2024 20:57:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27aa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:42:37 GMT
etag: 0x8DCDC64140C090D
content-type: text/javascript; charset=utf-8
content-md5: dnpmZoUOxlJ89heLQg9RPg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 70cdbd39-101e-0068-63d9-16b4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 273
cache-control: public, no-transform, max-age=68643
expires: Sun, 10 Nov 2024 20:32:32 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:54 GMT
etag: 0x8DCDC6294C38C12
content-length: 354
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WtL+AZkqTZVxjfCn+olL5A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dc0f29ec-601e-0001-3156-17eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=235412
expires: Tue, 12 Nov 2024 18:52:01 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:40 GMT
etag: 0x8DCDC665211749A
content-type: text/javascript; charset=utf-8
content-md5: FOSg83CHS0e4hPgLfMT99Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 36179a88-a01e-003e-04c6-155cb1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3450
cache-control: public, no-transform, max-age=111066
expires: Mon, 11 Nov 2024 08:19:35 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:33:31 GMT
x-eventid: 672daa4db4cf418eb74939705fddc6ed
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP00010617
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qNdhKFejyikw5XP4ySrs5Fghitntb6NbbaAi/g7PWBA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=275863
expires: Wed, 13 Nov 2024 06:06:12 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b2
timing-allow-origin: *
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:06 GMT
etag: 0x8DCDC5E23EBB645
content-type: text/javascript; charset=utf-8
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3e65cb90-701e-005a-0f05-18ec11000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 808
cache-control: public, no-transform, max-age=149833
expires: Mon, 11 Nov 2024 19:05:42 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:43 GMT
etag: 0x8DCDC67727707C5
content-type: text/javascript; charset=utf-8
content-md5: /Hmq8U66L6XVc7uD0Xm88A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4eb8d37e-501e-0002-68f2-14e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2784
cache-control: public, no-transform, max-age=159737
expires: Mon, 11 Nov 2024 21:50:46 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/3NYnR9z1mfq6DmFVYK_gPtQesRM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/3NYnR9z1mfq6DmFVYK_gPtQesRM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:36:35 GMT
etag: 0x8DCEC878378897E
content-length: 341
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 88havyMLrln5SjBx6wFUMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 463fda54-c01e-000c-49ae-210461000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=162757
expires: Mon, 11 Nov 2024 22:41:06 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 150042bc-501e-0002-6231-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=370955
expires: Thu, 14 Nov 2024 08:31:04 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 17 Oct 2024 18:45:59 GMT
etag: 0x8DCEEDBF16716B4
content-type: text/javascript; charset=utf-8
content-md5: /wEAo+jqTIFShGVUYgIPGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e8234102-301e-0019-6874-21c6f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 581
cache-control: public, no-transform, max-age=73429
expires: Sun, 10 Nov 2024 21:52:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:34:30 GMT
etag: 0x8DCEC873924D630
content-length: 1320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TJJLjTJdafNm/EE7zNTGjw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 17cb023f-e01e-001b-2bc6-1ec402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=136712
expires: Mon, 11 Nov 2024 15:27:01 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
content-type: text/javascript; charset=utf-8
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e18b7d35-c01e-0061-2e2c-17ae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 257
vary: Accept-Encoding
akamai-grn: 0.5eba1302.1728733938.3b2c0691
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=276061
expires: Wed, 13 Nov 2024 06:09:30 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27b9
timing-allow-origin: *
GET

https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:38 GMT
etag: 0x8DCDC628B41A2BA
content-length: 4674
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BPyOi7Ua4VjrwhCEYjxU+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a798235b-f01e-000f-69e3-140766000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76012
expires: Sun, 10 Nov 2024 22:35:21 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ba
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:16 GMT
etag: 0x8DCDC64BACB4BE8
content-type: text/javascript; charset=utf-8
content-md5: I/KVjWbAxZXfBeLqiVYi3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a0015b35-401e-0034-3bef-164538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 542
cache-control: public, no-transform, max-age=281011
expires: Wed, 13 Nov 2024 07:32:00 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27bb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LnZWyyNXjl-aM6CZGGI467irlEM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/LnZWyyNXjl-aM6CZGGI467irlEM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 28 Oct 2024 13:21:40 GMT
etag: 0x8DCF7537540AA21
content-length: 2280
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TxeIbDcSiY9/bth/Z/XWWQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4a65e919-101e-0005-0f9a-291eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1730167656.36211b2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=168251
expires: Tue, 12 Nov 2024 00:12:40 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27bc
timing-allow-origin: *
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4f583ed8-b01e-004c-5162-152d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=108909
expires: Mon, 11 Nov 2024 07:43:38 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27bd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 451
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Db92/67CtFF0jljsKqPMeQ==
last-modified: Mon, 04 Nov 2024 04:21:32 GMT
etag: 0x8DCFC8829FC5441
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81247038-f01e-004b-0cee-2edb0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=234049
expires: Tue, 12 Nov 2024 18:29:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27cb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:21:57 GMT
etag: 0x8DCDC61311C1C65
content-length: 450
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rtxvs37lrHH+iqrm7oyJaw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6fd789d0-401e-003f-6655-175d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=253178
expires: Tue, 12 Nov 2024 23:48:07 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27cc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-length: 320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b1a93f5f-601e-0067-0cc7-175937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=103296
expires: Mon, 11 Nov 2024 06:10:05 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27cd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96271d35-101e-002c-405a-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=151543
expires: Mon, 11 Nov 2024 19:34:12 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ce
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-length: 200
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 448b9b60-901e-0014-7637-1629f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=200773
expires: Tue, 12 Nov 2024 09:14:42 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27cf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 30ed348f-401e-0070-7728-189954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
cache-control: public, no-transform, max-age=281042
expires: Wed, 13 Nov 2024 07:32:31 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:57:43 GMT
etag: 0x8DCDC5DCE643BD1
content-type: text/javascript; charset=utf-8
content-md5: CnBe2qUSynWF62FiKAsEfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3d1914a5-401e-0059-7512-16ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1133
cache-control: public, no-transform, max-age=416280
expires: Thu, 14 Nov 2024 21:06:29 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
content-length: 613
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 14877534-201e-000d-432e-16059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=66673
expires: Sun, 10 Nov 2024 19:59:42 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2006
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kbJdHNWIQlOa0AZdH1dRWQ==
last-modified: Mon, 14 Oct 2024 19:26:52 GMT
etag: 0x8DCEC8628526962
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ec25d153-201e-006b-35ca-1eb7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=153640
expires: Mon, 11 Nov 2024 20:09:09 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:01:35 GMT
etag: 0x8DCDC66BA62EF4C
content-length: 1737
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MH86c+Cw/X3ukvifBPzDeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e8b5a9c9-201e-002f-566f-1b6baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=96809
expires: Mon, 11 Nov 2024 04:21:58 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:07 GMT
etag: 0x8DCDC5D067E2917
content-type: text/javascript; charset=utf-8
content-md5: GLaLmYi6VgbtR9vVQrFDIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca08d9ef-101e-004a-3a63-15daf7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1913
cache-control: public, no-transform, max-age=200931
expires: Tue, 12 Nov 2024 09:17:20 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:14:36 GMT
etag: 0x8DCDC688C17C78B
content-length: 1981
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cjiiNPsYSsV3a8xOZhlPWw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6277fdf7-d01e-0018-1c26-15c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=333052
expires: Wed, 13 Nov 2024 21:59:21 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a9070a5-501e-0020-2ef1-17865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=231726
expires: Tue, 12 Nov 2024 17:50:35 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27d9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-length: 92
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 12652374-701e-0078-01eb-148227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b3777b5c.1727904385.ccaa679
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=239555
expires: Tue, 12 Nov 2024 20:01:04 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27da
timing-allow-origin: *
GET

https://r.bing.com/rp/M3xiMRj_NI1FZuxN8qdZp2woCV8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/M3xiMRj_NI1FZuxN8qdZp2woCV8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 949
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DYsmaZlQzIfEiHsUdkmYXQ==
last-modified: Fri, 08 Nov 2024 07:07:30 GMT
etag: 0x8DCFFC4030F3D3D
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 836464ef-801e-0000-3e06-32ea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=317807
expires: Wed, 13 Nov 2024 17:45:16 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27db
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:47 GMT
etag: 0x8DCDC6461B8EC87
content-length: 2856
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NHuJgX+3GPNWYAgf/6GFAw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1dbd6776-201e-002f-764f-176baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=398269
expires: Thu, 14 Nov 2024 16:06:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27dc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:01:44 GMT
etag: 0x8DCDC5E5E0E9687
content-length: 2391
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DwfcvNDY4cp/xtPCgBZRvg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd92789c-801e-0000-345f-16ea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=193650
expires: Tue, 12 Nov 2024 07:15:59 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27dd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:05 GMT
etag: 0x8DCDC5F88CB30A2
content-type: text/javascript; charset=utf-8
content-md5: Fce2jR7sZtHS19v+4jpjKg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f71ab69-701e-0015-4358-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11250
cache-control: public, no-transform, max-age=253365
expires: Tue, 12 Nov 2024 23:51:14 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27de
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
content-length: 792
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9fbeff99-501e-0064-04c9-175a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=112789
expires: Mon, 11 Nov 2024 08:48:18 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27df
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:06 GMT
etag: 0x8DCDC5F892CA35E
content-type: text/javascript; charset=utf-8
content-md5: OAAEPZ6Y2Cv5Tvx1MtCI8g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1cb82408-301e-0030-2923-15b0ba000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4188
cache-control: public, no-transform, max-age=66184
expires: Sun, 10 Nov 2024 19:51:33 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:12:15 GMT
etag: 0x8DCDC68381358DA
content-length: 2632
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dJ7Q1hEDQZpSEIL9Tfjy5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e5261dd0-201e-000d-0eb0-14059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=253697
expires: Tue, 12 Nov 2024 23:56:46 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
content-length: 512
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2d94308-501e-006f-4b98-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=157147
expires: Mon, 11 Nov 2024 21:07:36 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2c08729-201e-002f-4333-186baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=244882
expires: Tue, 12 Nov 2024 21:29:51 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:43 GMT
etag: 0x8DCDC6771F95EA9
content-length: 823
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OWtJIHWEErxydxBW1ciLxw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8ca2e770-e01e-0054-2ddc-15001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113278
expires: Mon, 11 Nov 2024 08:56:27 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:42:09 GMT
etag: 0x8DCDC6403579AF9
content-length: 9018
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Mq4wUdUzpndWE0KYk432SA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eea1c676-101e-0041-0a99-16c283000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=113180
expires: Mon, 11 Nov 2024 08:54:49 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 04 Nov 2024 09:56:20 GMT
etag: 0x8DCFCB6EF5A0139
content-length: 1225
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: VYd40WFg+Mt8qNsL/WDxNQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1a833df7-701e-001e-34ee-2e307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=353918
expires: Thu, 14 Nov 2024 03:47:07 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PY0SrrESH_R6W9dvCF-dX40xFO4.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/PY0SrrESH_R6W9dvCF-dX40xFO4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:40:43 GMT
etag: 0x8DCDC63D0601526
content-length: 3847
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ayFkEznj0BrDPAjm17AJAQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e3d9f35e-d01e-0075-027e-156d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=84977
expires: Mon, 11 Nov 2024 01:04:46 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:47 GMT
etag: 0x8DCDC5F5A463EFF
content-length: 705
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rG7VUMX4iQJJxBP5sPK0bw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a5e3358d-d01e-003a-64a0-14a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=114726
expires: Mon, 11 Nov 2024 09:20:35 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27e9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:51 GMT
etag: 0x8DCDC5E8650E75C
content-length: 526
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OE66trga7eniXfEauP76xA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0e8cd59a-701e-0015-6c27-162809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1a071002.1728285773.f2d6a758
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=161499
expires: Mon, 11 Nov 2024 22:20:08 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ea
timing-allow-origin: *
GET

https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:12 GMT
etag: 0x8DCDC67CABA66FC
content-type: text/javascript; charset=utf-8
content-md5: R0hRHsurcD1pLX+6Vf4lXQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ac9a9a1e-601e-004e-12b4-162f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 688
cache-control: public, no-transform, max-age=283044
expires: Wed, 13 Nov 2024 08:05:53 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ec
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
content-length: 1076
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 507fdf57-601e-0067-5912-165937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=389181
expires: Thu, 14 Nov 2024 13:34:50 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ed
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:44 GMT
etag: 0x8DCDC5F58808E4E
content-length: 468
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Hld4hrLTgdOY14/WVAnFqg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2005641e-a01e-0053-5e15-16f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=292002
expires: Wed, 13 Nov 2024 10:35:11 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ee
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:30 GMT
etag: 0x8DCDC68AC3EB654
content-length: 1050
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4a3fKAPxT8n6JSY4NlwK9Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a59d1982-c01e-0061-7cb6-17ae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=196561
expires: Tue, 12 Nov 2024 08:04:30 GMT
date: Sun, 10 Nov 2024 01:28:29 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202109.fea27ef
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:33:08 GMT
etag: 0x8DCDC62C12D8E25
content-type: text/javascript; charset=utf-8
content-md5: cwdNdlabWDC1hjuwYmzczw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8a65c526-f01e-0040-06b5-14c37e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1225
cache-control: public, no-transform, max-age=319950
expires: Wed, 13 Nov 2024 18:21:00 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea27eb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:31 GMT
etag: 0x8DCDC65E1C9F0B5
content-length: 1451
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 7Zu2tGJpZ69JX58tozVjPQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a14dc81e-301e-0030-1213-18b0ba000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b9777b5c.1729256112.8fea40
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=130989
expires: Mon, 11 Nov 2024 13:51:39 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea27e0
timing-allow-origin: *
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce50cb20-d01e-0018-1b62-17c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=424088
expires: Thu, 14 Nov 2024 23:16:38 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea2899
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
content-length: 263
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kSd0hTdqYlIKxD09mZrqMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19451da4-501e-0046-6040-1a3406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=53420
expires: Sun, 10 Nov 2024 16:18:50 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea2898
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WGsMK7cVtc-pBG-Z9UpxSyKSl_8.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/WGsMK7cVtc-pBG-Z9UpxSyKSl_8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 3916
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: GzmaCdOmLCqw31xlHqIo4Q==
last-modified: Wed, 30 Oct 2024 03:26:52 GMT
etag: 0x8DCF892B261F9D3
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3383694b-101e-0027-47af-2a70d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=296842
expires: Wed, 13 Nov 2024 11:55:52 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea28b5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wYAz2GeddC4qqx1siMKL2Pip4Q0.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/wYAz2GeddC4qqx1siMKL2Pip4Q0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 26343
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zXT6TwlEljwJCGEf7VZdmw==
last-modified: Thu, 07 Nov 2024 11:53:42 GMT
etag: 0x8DCFF22D38F8DA4
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eb5cb2bf-e01e-0032-0743-31b240000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=234393
expires: Tue, 12 Nov 2024 18:35:03 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea2a0a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Lx_TZsW5eK7jy9b_h2SuK-KRAjk.br.js

msedge.exe

Remote address:

92.123.128.133:443

Request

GET /rp/Lx_TZsW5eK7jy9b_h2SuK-KRAjk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 11801
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4rUc8Gqp8lHmBSdVftiDtQ==
last-modified: Thu, 07 Nov 2024 11:53:40 GMT
etag: 0x8DCFF22D29EE801
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 22e0f063-501e-004d-4043-312c72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=234440
expires: Tue, 12 Nov 2024 18:35:50 GMT
date: Sun, 10 Nov 2024 01:28:30 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202110.fea2a11
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

mashable.com

msedge.exe

Remote address:

8.8.8.8:53

Request

mashable.com

IN A

Response

mashable.com

IN A

172.64.145.239

mashable.com

IN A

104.18.42.17
DNS

login.microsoftonline.com

msedge.exe

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.trafficmanager.net

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.140

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.72

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.160.20

www.tm.ak.prd.aadg.trafficmanager.net

IN A

20.190.160.17

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.138

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.134

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.68

www.tm.ak.prd.aadg.trafficmanager.net

IN A

40.126.32.133
DNS

161.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.128.123.92.in-addr.arpa

IN PTR

Response

161.128.123.92.in-addr.arpa

IN PTR

a92-123-128-161deploystaticakamaitechnologiescom
DNS

133.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.128.123.92.in-addr.arpa

IN PTR

Response

133.128.123.92.in-addr.arpa

IN PTR

a92-123-128-133deploystaticakamaitechnologiescom
DNS

76.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

76.32.126.40.in-addr.arpa

IN PTR

Response
DNS

237.21.107.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.21.107.13.in-addr.arpa

IN PTR

Response
DNS

bonzibuddy.org

msedge.exe

Remote address:

8.8.8.8:53

Request

bonzibuddy.org

IN A

Response

bonzibuddy.org

IN A

198.187.29.31
GET

https://bonzibuddy.org/download.html

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /download.html HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html
last-modified: Sat, 17 Mar 2018 05:50:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2704
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/loading.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/loading.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/download.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/download.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:36:09 GMT
accept-ranges: bytes
content-length: 151
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbabilities2.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbabilities2.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:36:00 GMT
accept-ranges: bytes
content-length: 4705
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbvine.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbvine.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/jpeg
last-modified: Sat, 17 Mar 2018 05:36:36 GMT
accept-ranges: bytes
content-length: 1077
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/sepbar.jpg

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/sepbar.jpg HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:35:37 GMT
accept-ranges: bytes
content-length: 25417
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/meetyou.jpg

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/meetyou.jpg HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/jpeg
last-modified: Sat, 17 Mar 2018 05:36:14 GMT
accept-ranges: bytes
content-length: 40164
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbsearch.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbsearch.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:35:54 GMT
accept-ranges: bytes
content-length: 2848
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbmail.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbmail.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:35:44 GMT
accept-ranges: bytes
content-length: 16948
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbdownload.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbdownload.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:35:48 GMT
accept-ranges: bytes
content-length: 23622
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbcalendar.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bbcalendar.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:49:17 GMT
accept-ranges: bytes
content-length: 182
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/banana24.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/banana24.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:35:41 GMT
accept-ranges: bytes
content-length: 27314
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bonz24.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/bonz24.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=604800
expires: Sun, 17 Nov 2024 01:28:33 GMT
content-type: image/gif
last-modified: Sat, 17 Mar 2018 05:36:05 GMT
accept-ranges: bytes
content-length: 613
date: Sun, 10 Nov 2024 01:28:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
GET

https://bonzibuddy.org/favicon.ico

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /favicon.ico HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sun, 10 Nov 2024 01:28:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
DNS

31.29.187.198.in-addr.arpa

Remote address:

8.8.8.8:53

Request

31.29.187.198.in-addr.arpa

IN PTR

Response

31.29.187.198.in-addr.arpa

IN PTR

server126-5web-hostingcom
DNS

11.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

11.227.111.52.in-addr.arpa

IN PTR

Response
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.164

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.149
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.164

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.169
GET

https://r.bing.com/rp/2r5W2sO7t8CysMYVPQe_auAQRjA.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/2r5W2sO7t8CysMYVPQe_auAQRjA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:34:31 GMT
etag: 0x8DCEC8739B1E66C
content-length: 809
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3w/5aj54/USNeiw5IPUxjg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 029b22af-101e-0068-04e8-1fb4c1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=359595
expires: Thu, 14 Nov 2024 05:23:51 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03a3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wtzaWs32sw1oSL4IoeJ5EBdP83k.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/wtzaWs32sw1oSL4IoeJ5EBdP83k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:12:34 GMT
etag: 0x8DCDC684390A1F1
content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 1O6aj8iS7fHWARkcVbL4qw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e94057fa-c01e-0025-0bcb-177223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=161088
expires: Mon, 11 Nov 2024 22:15:24 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03a9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:58 GMT
etag: 0x8DCEC8820C817CC
content-type: text/javascript; charset=utf-8
content-md5: fDfcGVjjIYKMJPyzxnMllQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce5c344e-b01e-0047-06bf-1f35fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 621
cache-control: public, no-transform, max-age=128183
expires: Mon, 11 Nov 2024 13:06:59 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03af
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:02 GMT
etag: 0x8DCDC5DD9F18707
content-length: 609
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xDlaPc4CIl9EtDB3rZQT4g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3dd0a842-801e-0044-7915-1836fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=267088
expires: Wed, 13 Nov 2024 03:42:04 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03b0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:46 GMT
etag: 0x8DCDC67DEF5A5E3
content-length: 337
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: LFuZvL0e5DJBYEu+T6/NbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: be30e3da-b01e-0047-1583-1935fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=279771
expires: Wed, 13 Nov 2024 07:13:27 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03b1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:42 GMT
etag: 0x8DCDC662FCCB149
content-length: 845
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ofKtvEh5ABtGyUoMNka3Xw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5adc31d4-d01e-0075-4065-176d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=137247
expires: Mon, 11 Nov 2024 15:38:03 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03c1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:10 GMT
etag: 0x8DCDC64934099EF
content-length: 620
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: BEMV1uDaLjBHWgMuX8vJ2g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7883442b-301e-003b-650c-15a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=42880
expires: Sun, 10 Nov 2024 13:25:16 GMT
date: Sun, 10 Nov 2024 01:30:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202236.feb03c6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 03 Oct 2024 23:52:40 GMT
etag: 0x8DCE406777B361D
content-type: text/javascript; charset=utf-8
content-md5: no3q5IDtWMP5jPFHYqq5Bw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: df23bc48-e01e-0076-102f-166e2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 994
cache-control: public, no-transform, max-age=71071
expires: Sun, 10 Nov 2024 21:15:17 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1651
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:30:41 GMT
etag: 0x8DCEC86B0CE8A0B
content-length: 328
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 15JqyZBsCgkATXocOIdHMw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 36f09d29-101e-0005-7cb1-1e1eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76032
expires: Sun, 10 Nov 2024 22:37:58 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1654
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:20:19 GMT
etag: 0x8DCDC60F70B8C46
content-length: 6951
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: RdJgun+5JT/harEpJrkclw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1d77a17e-c01e-002e-4aac-166a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=163014
expires: Mon, 11 Nov 2024 22:47:40 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1653
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:08 GMT
etag: 0x8DCDC5E250561B1
content-length: 476
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dIetyGvEY3rWVcsphG5z6g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5164213-c01e-0048-32a8-14d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=141981
expires: Mon, 11 Nov 2024 16:57:07 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1657
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:30 GMT
etag: 0x8DCDC5D13CD0771
content-length: 310
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L5ADL4PV6f4x84onM+3pfQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f330063-901e-0072-7fe6-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=356954
expires: Thu, 14 Nov 2024 04:40:00 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1658
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:16:07 GMT
etag: 0x8DCDC6060BC5610
content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: pDodX6p5WFhmpgGbyxGATg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd9fef0a-201e-0042-15cd-14c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=139903
expires: Mon, 11 Nov 2024 16:22:29 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1659
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:01 GMT
etag: 0x8DCDC5F3F15CCC5
content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f4ddfdf-701e-003c-0e78-175e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=78999
expires: Sun, 10 Nov 2024 23:27:25 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb165a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 485
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rEFXJrf0kyk8MofTblrrHg==
last-modified: Tue, 24 Sep 2024 07:08:12 GMT
etag: 0x8DCDC67A73161B2
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6ebcb76d-f01e-004b-4d19-17db0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=235473
expires: Tue, 12 Nov 2024 18:55:19 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb165b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:28:47 GMT
etag: 0x8DCEC866CA9CA41
content-length: 293
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5FutdZ9pAOltv8jfNxKE3A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 278faa1f-501e-0020-0bbe-20865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=151442
expires: Mon, 11 Nov 2024 19:34:48 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb165c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1092
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: v56DnyZo0+Ho77B8f6GoyA==
last-modified: Tue, 24 Sep 2024 07:02:23 GMT
etag: 0x8DCDC66D6FEC879
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a08c9759-401e-0034-262f-174538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=152542
expires: Mon, 11 Nov 2024 19:53:08 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb165d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:04:52 GMT
etag: 0x8DCDC672FE75D26
content-type: text/javascript; charset=utf-8
content-md5: JYNnUW1D/Qe7hGsFi8+mBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 85f60ed7-801e-0044-1392-1636fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 437
cache-control: public, no-transform, max-age=299592
expires: Wed, 13 Nov 2024 12:43:58 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb165e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/0KHDNObKLC5kGksOK_SAxCU6C6A.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/0KHDNObKLC5kGksOK_SAxCU6C6A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:28:11 GMT
etag: 0x8DCEC865785602B
content-length: 1984
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PWRhNJyGnuQ6PMe+3Hl/uA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9eea05c4-401e-0059-6471-21ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=241670
expires: Tue, 12 Nov 2024 20:38:36 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb166a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yEePz6L7x2Myi9VGz4Olw9HZ1OY.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/yEePz6L7x2Myi9VGz4Olw9HZ1OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:14:18 GMT
etag: 0x8DCDC6881491B53
content-length: 1325
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 8KgmWBgQ4KGgU8pIv2MkPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ca2db4d-901e-0079-07ba-1483da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=107826
expires: Mon, 11 Nov 2024 07:27:52 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb166c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Sg2SEjOJ2EXOwmKB8pcjFgoXAe4.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/Sg2SEjOJ2EXOwmKB8pcjFgoXAe4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:25:14 GMT
etag: 0x8DCDC61A65ABF6A
content-length: 11966
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: y8DBAe0yyw5P3nD4UraWCA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 76c53830-201e-0006-7e06-171de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=370228
expires: Thu, 14 Nov 2024 08:21:14 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb166d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RfXxODnaOKv57ZDezBRVyahhji0.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/RfXxODnaOKv57ZDezBRVyahhji0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:23:41 GMT
etag: 0x8DCDC616F13451A
content-length: 965
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PB4/Iq4vpmbgiE9DCr3/Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2e40ed02-a01e-0058-15ca-17eeeb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47502
expires: Sun, 10 Nov 2024 14:42:28 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb166f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PS_P4UFz-tUSpZhOZ0ml0E9K0YM.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/PS_P4UFz-tUSpZhOZ0ml0E9K0YM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:20:05 GMT
etag: 0x8DCDC60EE2C0C10
content-length: 1829
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: KBzFKcVEZCPSgCL4DxskGg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 48bf1fab-201e-0049-3612-18d9f0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=369087
expires: Thu, 14 Nov 2024 08:02:13 GMT
date: Sun, 10 Nov 2024 01:30:46 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202246.feb1670
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NW_w0EXs3h3l9N3PeqyVuRIrqp8.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/NW_w0EXs3h3l9N3PeqyVuRIrqp8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:01 GMT
etag: 0x8DCDC60808668AA
content-length: 541
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NEMR8KpUsOFkLfYMbaoAQw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3dd20b7a-601e-0023-07a0-14855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=77510
expires: Sun, 10 Nov 2024 23:02:37 GMT
date: Sun, 10 Nov 2024 01:30:47 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202247.feb17e1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yvUvB8qvQCN6KN5FPuoFbl2pfV8.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/yvUvB8qvQCN6KN5FPuoFbl2pfV8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2313
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0MUGoWYv4bM0S/HIL8J1Tg==
last-modified: Tue, 24 Sep 2024 07:15:49 GMT
etag: 0x8DCDC68B7919A09
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 43b91140-b01e-0003-498b-17e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=71144
expires: Sun, 10 Nov 2024 21:16:54 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40d0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Yy4cH1WTygMOMDL8VywlZQbSoXQ.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/Yy4cH1WTygMOMDL8VywlZQbSoXQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2845
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +VxqUB/6HFmZVVZrsp2FgQ==
last-modified: Tue, 24 Sep 2024 06:34:51 GMT
etag: 0x8DCDC62FE9A3FCE
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 94c4ef9d-e01e-001b-4505-17c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=94513
expires: Mon, 11 Nov 2024 03:46:23 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/spBac3V4vy6E9Xxx8Pvlb-L-Vro.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/spBac3V4vy6E9Xxx8Pvlb-L-Vro.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:20 GMT
etag: 0x8DCDC67642D260B
content-length: 2760
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: AZfaW6K1ZDczsEYa2OLZ8A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cf14bbde-a01e-0053-7312-15f69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80393
expires: Sun, 10 Nov 2024 23:51:03 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CDLORe9WY_SZjdDTSa7IgnM94kA.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/CDLORe9WY_SZjdDTSa7IgnM94kA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:59:30 GMT
etag: 0x8DCDC5E0E9A9D18
content-length: 2457
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wRGv7mTxPt+WoEWn4KGjiQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c4a0fc70-401e-001d-779d-18337a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=176982
expires: Tue, 12 Nov 2024 02:40:52 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hS2Ln3L7Vdr3v3b6DpLYscDrwiI.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/hS2Ln3L7Vdr3v3b6DpLYscDrwiI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:20 GMT
etag: 0x8DCDC6504A9B154
content-length: 10269
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4d7Lni52/m0BkzAwMoB4Ag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efa19bd1-d01e-0075-4d2c-166d2b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=59715
expires: Sun, 10 Nov 2024 18:06:25 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Tkj5rlaNmn5JbAkYaigycK39aFw.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/Tkj5rlaNmn5JbAkYaigycK39aFw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:49 GMT
etag: 0x8DCDC61DEF5D663
content-length: 31006
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: elodufKI4kAUbiNhMOJI5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 28163566-501e-0046-3ce5-153406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=196609
expires: Tue, 12 Nov 2024 08:07:59 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5_njacTHNI5UUdpA3bwOxQr_P0s.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/5_njacTHNI5UUdpA3bwOxQr_P0s.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:23 GMT
etag: 0x8DCEC88536CD030
content-length: 27
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: lYFhCm4z0gPIXLP+vBEYPQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6d80bb7b-101e-000e-406d-20069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=95196
expires: Mon, 11 Nov 2024 03:57:46 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/z_fr5KPW2OLJ1tiXoS8gQsDpaMs.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/z_fr5KPW2OLJ1tiXoS8gQsDpaMs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:43 GMT
etag: 0x8DCDC68D7CC5B30
content-length: 46287
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Etbx7kMy9DoKY2zH8SQs/w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8a4f9a55-f01e-0040-2ead-14c37e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=64794
expires: Sun, 10 Nov 2024 19:31:04 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40e9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5eR37RwSXCOmcXdOuj57I2X7Gmk.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/5eR37RwSXCOmcXdOuj57I2X7Gmk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:18 GMT
etag: 0x8DCEC88502CEB9B
content-type: text/javascript; charset=utf-8
content-md5: UKEarhl0L0p8hq+9PJuEug==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ddd0bd26-101e-0027-5d82-2170d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2385
cache-control: public, no-transform, max-age=201187
expires: Tue, 12 Nov 2024 09:24:17 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40ea
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R3ICOmvNQFzZuyFRCH0v_eobUKE.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/R3ICOmvNQFzZuyFRCH0v_eobUKE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:36 GMT
etag: 0x8DCDC61482CF3C1
content-length: 24960
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 48RgHG9519ZHPMW9FniGgQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 87667d15-201e-0060-7423-18afb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=412291
expires: Thu, 14 Nov 2024 20:02:41 GMT
date: Sun, 10 Nov 2024 01:31:10 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202270.feb40eb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/tm4DpuVvyn4GxWBMrshBhMC32o0.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/tm4DpuVvyn4GxWBMrshBhMC32o0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:07:58 GMT
etag: 0x8DCDC679EA80979
content-type: text/javascript; charset=utf-8
content-md5: Y1lKRWku2Q89b9nqmhQJpg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3d651c32-601e-006c-096a-154143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 706
cache-control: public, no-transform, max-age=324047
expires: Wed, 13 Nov 2024 19:32:23 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d08
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jVtXp01siIY95gyiD5LwI6A6NQA.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/jVtXp01siIY95gyiD5LwI6A6NQA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:52:03 GMT
etag: 0x8DCDC65659E53BB
content-length: 208
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jiImIxIvePgGs1BKyuENAw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fa2951ae-401e-0059-6bd4-17ef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=199939
expires: Tue, 12 Nov 2024 09:03:55 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d09
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/hN/jnc,nj/-Sz2s5N7OH1ytS3UvkSX2O_IA9Y.js?or=w

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rs/6v/hN/jnc,nj/-Sz2s5N7OH1ytS3UvkSX2O_IA9Y.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2244
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:26:01 GMT
x-eventid: 672dac8661d8457fac20f3d11bbe1d7f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0C2
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-OTbmh/3WIDV8eWXoaPv8wlgaEHOb5hU/6gsJM3NvfTg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=276222
expires: Wed, 13 Nov 2024 06:15:18 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d0a
timing-allow-origin: *
GET

https://r.bing.com/rs/6v/hA/jnc,nj/aUxJu_FqaOa5En563fWRr8ejkqw.js?or=w

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rs/6v/hA/jnc,nj/aUxJu_FqaOa5En563fWRr8ejkqw.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1645
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:38:53 GMT
x-eventid: 672dac86b15941e4bfd379ab7b78ff8b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E018
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ED9fPV+rG91jjOcUYx7O6YAbklP22Ij8rJ6PnfgnC90='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=276238
expires: Wed, 13 Nov 2024 06:15:34 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d0b
timing-allow-origin: *
GET

https://r.bing.com/rp/BiFnBkt6g28AddlNpxuNYXu0AbY.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/BiFnBkt6g28AddlNpxuNYXu0AbY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:13 GMT
etag: 0x8DCDC5DE04897B3
content-length: 191
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 78wRC+KKqRR8vvS562Kwmg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2632a9d-f01e-004b-0bfa-17db0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=294893
expires: Wed, 13 Nov 2024 11:26:29 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d0c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js

msedge.exe

Remote address:

92.123.128.146:443

Request

GET /rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:25 GMT
etag: 0x8DCDC5D5849488C
content-length: 5413
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 7Upr0pfg4HBuWeYA0wUzww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 607cc2d1-001e-0038-21bf-15abc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=200701
expires: Tue, 12 Nov 2024 09:16:37 GMT
date: Sun, 10 Nov 2024 01:31:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c2777b5c.1731202296.feb7d17
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

146.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

146.128.123.92.in-addr.arpa

IN PTR

Response

146.128.123.92.in-addr.arpa

IN PTR

a92-123-128-146deploystaticakamaitechnologiescom
DNS

fpt.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

fpt.microsoft.com

IN A

Response

fpt.microsoft.com

IN CNAME

pme-greenid-prod.trafficmanager.net

pme-greenid-prod.trafficmanager.net

IN CNAME

greenid-prod-pme.eastus2.cloudapp.azure.com

greenid-prod-pme.eastus2.cloudapp.azure.com

IN A

52.167.30.171
DNS

171.30.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

171.30.167.52.in-addr.arpa

IN PTR

Response
DNS

171.30.167.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

171.30.167.52.in-addr.arpa

IN PTR
GET

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/loading.gif

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /NEW!%20-%20BonziBUDDY!_files/loading.gif HTTP/2.0
host: bonzibuddy.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://bonzibuddy.org/download.html
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 404

cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1251
date: Sun, 10 Nov 2024 01:31:14 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.19.117.143

a1851.dscg2.akamai.net

IN A

2.19.117.148
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingcsp

msedge.exe

Remote address:

2.19.117.143:443

Request

OPTIONS /api/report?cat=bingcsp HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://www.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Length: 0
Server: Kestrel
Date: Sun, 10 Nov 2024 01:31:31 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.8f741302.1731202291.1055e040
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingcsp

msedge.exe

Remote address:

2.19.117.143:443

Request

OPTIONS /api/report?cat=bingcsp HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://www.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Length: 0
Server: Kestrel
Date: Sun, 10 Nov 2024 01:32:31 GMT
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.8f741302.1731202350.1055e056
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
DNS

143.117.19.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

143.117.19.2.in-addr.arpa

IN PTR

Response

143.117.19.2.in-addr.arpa

IN PTR

a2-19-117-143deploystaticakamaitechnologiescom
GET

http://bonzibuddy.org/Bonzi.zip

msedge.exe

Remote address:

198.187.29.31:80

Request

GET /Bonzi.zip HTTP/1.1
Host: bonzibuddy.org
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

keep-alive: timeout=5, max=100
content-type: text/html
content-length: 795
date: Sun, 10 Nov 2024 01:32:12 GMT
server: LiteSpeed
location: https://bonzibuddy.org/Bonzi.zip
x-turbo-charged-by: LiteSpeed
DNS

msedge.exe

Remote address:

198.187.29.31:80

Response

HTTP/1.1 408 Request Time-out

Content-length: 110
Cache-Control: no-cache
Connection: close
Content-Type: text/html
GET

https://bonzibuddy.org/Bonzi.zip

msedge.exe

Remote address:

198.187.29.31:443

Request

GET /Bonzi.zip HTTP/2.0
host: bonzibuddy.org
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/zip
last-modified: Sat, 17 Mar 2018 05:42:58 GMT
accept-ranges: bytes
content-length: 52256551
date: Sun, 10 Nov 2024 01:32:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
DNS

214.143.182.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

214.143.182.52.in-addr.arpa

IN PTR

Response
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.19.117.148

a1851.dscg2.akamai.net

IN A

2.19.117.143
DNS

148.117.19.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

148.117.19.2.in-addr.arpa

IN PTR

Response

148.117.19.2.in-addr.arpa

IN PTR

a2-19-117-148deploystaticakamaitechnologiescom
DNS

cxcs.microsoft.net

Remote address:

8.8.8.8:53

Request

cxcs.microsoft.net

IN A

Response

cxcs.microsoft.net

IN CNAME

cxcs.microsoft.net.edgekey.net

cxcs.microsoft.net.edgekey.net

IN CNAME

e3230.b.akamaiedge.net

e3230.b.akamaiedge.net

IN A

23.213.251.133
POST

https://www.bing.com/RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US

Remote address:

92.123.128.167:443

Request

POST /RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US HTTP/2.0
host: www.bing.com
accept-encoding: gzip, deflate
content-length: 1488
content-type: application/json; charset=UTF-8
cache-control: no-cache

Response

HTTP/2.0 200

content-length: 327
content-type: application/json; charset=utf-8
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
x-eventid: 67300da8274940dba4872f009553f628
x-as-setsessionmarket: en-US
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UVhie4jM2w0YhJZhjjFhI5a38RlZkl2zyvkrvuU6Vso='; base-uri 'self';
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:34:32 GMT
set-cookie: MUID=0F6BB2335C8B6ABE222BA7005D2F6B77; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:32 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0F6BB2335C8B6ABE222BA7005D2F6B77; expires=Fri, 05-Dec-2025 01:34:32 GMT; path=/
set-cookie: _EDGE_S=F=1&SID=0741BFB5821B6F1104D6AA8683BF6E70&mkt=en-US; domain=.bing.com; path=/
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Fri, 05-Dec-2025 01:34:32 GMT; path=/
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Tue, 10-Nov-2026 01:34:32 GMT; path=/
set-cookie: SRCHUID=V=2&GUID=4E3D089034394FF9BD92E894C7AC6CCB&dmnchg=1; domain=.bing.com; expires=Tue, 10-Nov-2026 01:34:32 GMT; path=/
set-cookie: SRCHUSR=DOB=20241110; domain=.bing.com; expires=Tue, 10-Nov-2026 01:34:32 GMT; path=/
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Tue, 10-Nov-2026 01:34:32 GMT; path=/
set-cookie: _SS=SID=0741BFB5821B6F1104D6AA8683BF6E70; domain=.bing.com; path=/
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.95777b5c.1731202472.8bee6ab
GET

https://cxcs.microsoft.net/api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop

Remote address:

23.213.251.133:443

Request

GET /api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop HTTP/2.0
host: cxcs.microsoft.net
accept-encoding: gzip, deflate

Response

HTTP/2.0 404

content-type: text/html
content-length: 26
date: Sun, 10 Nov 2024 01:34:32 GMT
DNS

133.251.213.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.251.213.23.in-addr.arpa

IN PTR

Response

133.251.213.23.in-addr.arpa

IN PTR

a23-213-251-133deploystaticakamaitechnologiescom
DNS

167.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

167.128.123.92.in-addr.arpa

IN PTR

Response

167.128.123.92.in-addr.arpa

IN PTR

a92-123-128-167deploystaticakamaitechnologiescom
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.187

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.194

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.133
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.187

e86303.dscx.akamaiedge.net

IN A

92.123.128.181
GET

https://r.bing.com/rp/Si7rG3edDg-qeAnBusoaXpRP5B8.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/Si7rG3edDg-qeAnBusoaXpRP5B8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 25 Oct 2024 12:32:42 GMT
etag: 0x8DCF4F11F493BEA
content-length: 271
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 595dU5XiosGGidkF0wjotw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8fe82ba3-f01e-0026-30fb-297124000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.45711102.1730231275.5f9fcf8
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=161555
expires: Mon, 11 Nov 2024 22:27:46 GMT
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202511.5ed3178
timing-allow-origin: *
GET

https://r.bing.com/rp/zoS_aOkV4hUHE2F9qD-3CZV_Zwg.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/zoS_aOkV4hUHE2F9qD-3CZV_Zwg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:17:06 GMT
etag: 0x8DCDC68E5BD7C60
content-length: 212
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: FDs7YL3Bzzz+VYuHTjiTKA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 74fcf405-f01e-0004-2d60-171f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=64396
expires: Sun, 10 Nov 2024 19:28:27 GMT
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202511.5ed317a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_eFpTgargBl_KoCm3Lhq0ZQSmpI.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/_eFpTgargBl_KoCm3Lhq0ZQSmpI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:37:10 GMT
etag: 0x8DCDC6351186D8A
content-length: 790
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IwT0Fu9wTptbEISnGf8DzA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a1b2c432-601e-0028-77f1-179d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=396345
expires: Thu, 14 Nov 2024 15:40:56 GMT
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202511.5ed317b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4h6MwFvskpsuWSAT9LJAV4odEog.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/4h6MwFvskpsuWSAT9LJAV4odEog.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 678
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dT0h/9Qh1Af56CcV7VC2/w==
last-modified: Tue, 29 Oct 2024 02:10:53 GMT
etag: 0x8DCF7BEEA97AB25
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 30b1e234-101e-000e-21e6-29069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=373369
expires: Thu, 14 Nov 2024 09:18:00 GMT
date: Sun, 10 Nov 2024 01:35:11 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202511.5ed317c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:32 GMT
etag: 0x8DCDC5DEBC36F3E
content-length: 163
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f39e518-601e-006c-24dc-164143000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=174321
expires: Tue, 12 Nov 2024 02:00:57 GMT
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202536.5ed7dbe
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

msedge.exe

Remote address:

92.123.128.187:443

Request

GET /rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 12:21:13 GMT
etag: 0x8DCDC9361C2A9CB
content-length: 305
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: U36iFcyu8u4qPEEyCl6EBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8e0dc95f-701e-0015-74c6-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=411715
expires: Thu, 14 Nov 2024 19:57:31 GMT
date: Sun, 10 Nov 2024 01:35:36 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.92777b5c.1731202536.5ed7dc0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
DNS

rewards.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

rewards.bing.com

IN A

Response

rewards.bing.com

IN CNAME

rewards-bing-com.dual-a-0034.a-msedge.net

rewards-bing-com.dual-a-0034.a-msedge.net

IN CNAME

dual-a-0034.a-msedge.net

dual-a-0034.a-msedge.net

IN A

13.107.21.237

dual-a-0034.a-msedge.net

IN A

204.79.197.237
OPTIONS

https://rewards.bing.com/widget/telemetry

msedge.exe

Remote address:

13.107.21.237:443

Request

OPTIONS /widget/telemetry HTTP/2.0
host: rewards.bing.com
accept: */*
access-control-request-method: POST
access-control-request-headers: content-type
origin: https://www.bing.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: same-site
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 204

cache-control: max-age=0, no-cache, no-store, must-revalidate
access-control-allow-headers: content-type
access-control-allow-methods: POST
access-control-allow-origin: *
x-ceto-ref: 67300dcfb3704236be4ca2d849639418|AFD:67300dcfb3704236be4ca2d849639418|2024-11-10T01:35:11.630Z
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2535548D56294151A775742E592AC120 Ref B: FRA31EDGE0114 Ref C: 2024-11-10T01:35:11Z
set-cookie: MUIDB=24767A981EAC685338936FAB1F00697B; path=/; httponly; expires=Fri, 05-Dec-2025 01:35:11 GMT
date: Sun, 10 Nov 2024 01:35:11 GMT
POST

https://rewards.bing.com/widget/telemetry

msedge.exe

Remote address:

13.107.21.237:443

Request

POST /widget/telemetry HTTP/2.0
host: rewards.bing.com
content-length: 901
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=0, no-cache, no-store, must-revalidate
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: MUID=3F95A5DFFECF67F73D3CB0ECFF6366D3; expires=Fri, 05 Dec 2025 01:35:11 GMT; domain=.bing.com; path=/; secure; samesite=none
set-cookie: MUIDB=3F95A5DFFECF67F73D3CB0ECFF6366D3; expires=Fri, 05 Dec 2025 01:35:11 GMT; domain=.bing.com; path=/; httponly
set-cookie: _EDGE_S=F=1; domain=.bing.com; path=/; httponly
set-cookie: _EDGE_V=1; expires=Fri, 05 Dec 2025 01:35:11 GMT; domain=.bing.com; path=/; httponly
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 67300dcf6da546d0afaafca2b1812780|AFD:67300dcf6da546d0afaafca2b1812780|2024-11-10T01:35:11.708Z
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 778E83C11664448FAA120EC1248136A6 Ref B: FRA31EDGE0114 Ref C: 2024-11-10T01:35:11Z
date: Sun, 10 Nov 2024 01:35:11 GMT
content-length: 0
DNS

187.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

187.128.123.92.in-addr.arpa

IN PTR

Response

187.128.123.92.in-addr.arpa

IN PTR

a92-123-128-187deploystaticakamaitechnologiescom
DNS

tse1.mm.bing.net

msedge.exe

Remote address:

8.8.8.8:53

Request

tse1.mm.bing.net

IN A

Response

tse1.mm.bing.net

IN CNAME

mm-mm.bing.net.trafficmanager.net

mm-mm.bing.net.trafficmanager.net

IN CNAME

ax-0001.ax-msedge.net

ax-0001.ax-msedge.net

IN A

150.171.28.10

ax-0001.ax-msedge.net

IN A

150.171.27.10
GET

https://tse1.mm.bing.net/th?&id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.28.10:443

Request

GET /th?&id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 5310
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 5A1C075AC89845E79B3D7A054605DA4F Ref B: LON601060102052 Ref C: 2024-11-10T01:35:31Z
date: Sun, 10 Nov 2024 01:35:30 GMT
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
GET

https://github.com/limiteci/WannaCry

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:04 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"20f8df28c0e3bf68c5e68ce29b161d33"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F643:2D3275:3715F:3F333:67300E04
GET

https://github.com/limiteci/WannaCry/sponsor_button

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/sponsor_button HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"089f60a79b55886e977959f90bbed257"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: c56b3d322caaa5d04b8ac20e7eb092f3f0130334ef1920abfcaa224cca8dc221
accept-ranges: bytes
content-length: 70
x-github-request-id: F643:2D3275:371DF:3F3C1:67300E05
GET

https://github.com/limiteci/WannaCry/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F643:2D3275:371DF:3F3BF:67300E05
GET

https://github.com/limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"1517f0defa00eddcc4e29874ec7b3f20"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: c56b3d322caaa5d04b8ac20e7eb092f3f0130334ef1920abfcaa224cca8dc221
accept-ranges: bytes
content-length: 1321
x-github-request-id: F643:2D3275:371DF:3F3BE:67300E04
GET

https://github.com/limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F643:2D3275:371DF:3F3C2:67300E05
GET

https://github.com/limiteci/WannaCry/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57dd3ff551f8b3d10b3856a048bab63c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: F643:2D3275:371E5:3F3CD:67300E05
GET

https://github.com/limiteci/WannaCry/latest-commit/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/latest-commit/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: F643:2D3275:371DF:3F3C0:67300E05
GET

https://github.com/limiteci/WannaCry/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"fc30e9cfef8b13b99c08674597917171"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 82
x-github-request-id: F643:2D3275:371E5:3F3CA:67300E05
GET

https://github.com/limiteci/WannaCry/tree-commit-info/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/tree-commit-info/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"bc391bfedfcf1ab5d1f1a0340bc001e6"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 472
x-github-request-id: F643:2D3275:371E5:3F3CB:67300E05
GET

https://github.com/limiteci/WannaCry/overview-files/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/overview-files/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"c9fdf82d48cf65e9e50d2308ceb45de7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 429
x-github-request-id: F643:2D3275:371E5:3F3C9:67300E05
GET

https://github.com/limiteci/WannaCry/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"b4b415f5f2170d349343e4406f019a45"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 13916
x-github-request-id: F643:2D3275:371E5:3F3CC:67300E05
GET

https://github.com/limiteci/WannaCry/funding_links?fragment=1

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/funding_links?fragment=1 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9d8a34137a9f39222d04bf762c4aa637"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: c56b3d322caaa5d04b8ac20e7eb092f3f0130334ef1920abfcaa224cca8dc221
accept-ranges: bytes
content-length: 1385
x-github-request-id: F643:2D3275:371F5:3F3DD:67300E05
GET

https://github.com/limiteci/WannaCry?tab=readme-ov-file

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry?tab=readme-ov-file HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:22 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"99fa73db032f1db016705fc66231a00f"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F643:2D3275:377FB:3FAD0:67300E05
GET

https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:26 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F643:2D3275:3795E:3FC86:67300E16
GET

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:27 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F643:2D3275:37972:3FC98:67300E1A
GET

https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:27 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F643:2D3275:379A0:3FCCE:67300E1B
GET

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE HTTP/2.0
host: github.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Sun, 10 Nov 2024 01:36:27 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F643:2D3275:379AB:3FCD7:67300E1B
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.109.133

user-images.githubusercontent.com

IN A

185.199.108.133
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.226.241

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.176

s3-w.us-east-1.amazonaws.com

IN A

52.216.240.132

s3-w.us-east-1.amazonaws.com

IN A

52.217.121.169

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.211

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.89

s3-w.us-east-1.amazonaws.com

IN A

16.15.179.15

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.179
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.137.129

s3-w.us-east-1.amazonaws.com

IN A

52.217.118.81

s3-w.us-east-1.amazonaws.com

IN A

52.216.54.169

s3-w.us-east-1.amazonaws.com

IN A

3.5.30.145

s3-w.us-east-1.amazonaws.com

IN A

16.182.74.185

s3-w.us-east-1.amazonaws.com

IN A

16.182.100.169

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.22

s3-w.us-east-1.amazonaws.com

IN A

3.5.25.252
DNS

camo.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

camo.githubusercontent.com

IN A

Response

camo.githubusercontent.com

IN A

185.199.111.133

camo.githubusercontent.com

IN A

185.199.108.133

camo.githubusercontent.com

IN A

185.199.109.133

camo.githubusercontent.com

IN A

185.199.110.133
DNS

collector.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.112.22
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1040
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:05 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002679
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:59094E:94FD31:67300E05
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1320
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:05 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.004372
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:59094E:94FD32:67300E05
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1575
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:07 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002652
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:590B01:94FFFF:67300E05
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1089
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:23 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002911
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:5915FE:95122A:67300E07
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1373
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:23 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003432
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:591600:951231:67300E17
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1397
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:26 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002419
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:5917B4:95151A:67300E17
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1557
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:26 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002217
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:5917C4:951533:67300E1A
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.112.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1324
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:36:32 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002484
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: F1AF:1B3853:591B6D:951B86:67300E1A
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 723
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:05 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206165
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C88E:1A514F:1038D75:116CFB6:67300E05
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 638
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:12 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206172
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C88E:1A514F:1038F72:116D1E9:67300E05
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 307
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:15 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206175
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C88E:1A514F:103900A:116D287:67300E0C
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1626
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:23 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206183
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C88E:1A514F:10391CD:116D487:67300E0F
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 292
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:31 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206191
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C88E:1A514F:1039406:116D6E0:67300E17
DNS

en.wikipedia.org

msedge.exe

Remote address:

8.8.8.8:53

Request

en.wikipedia.org

IN A

Response

en.wikipedia.org

IN CNAME

dyna.wikimedia.org

dyna.wikimedia.org

IN A

185.15.59.224
DNS

en.wikipedia.org

msedge.exe

Remote address:

8.8.8.8:53

Request

en.wikipedia.org

IN A

Response

en.wikipedia.org

IN CNAME

dyna.wikimedia.org

dyna.wikimedia.org

IN A

185.15.59.224
GET

https://en.wikipedia.org/wiki/WannaCry_ransomware_attack

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /wiki/WannaCry_ransomware_attack HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 17:37:35 GMT
vary: Accept-Encoding,Cookie,Authorization
server: ATS/9.2.5
x-content-type-options: nosniff
content-language: en
accept-ch:
last-modified: Wed, 06 Nov 2024 18:05:31 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
age: 28720
x-cache: cp3073 hit, cp3073 hit/6
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
set-cookie: WMF-Last-Access=10-Nov-2024;Path=/;HttpOnly;secure;Expires=Thu, 12 Dec 2024 00:00:00 GMT
set-cookie: WMF-Last-Access-Global=10-Nov-2024;Path=/;Domain=.wikipedia.org;HttpOnly;secure;Expires=Thu, 12 Dec 2024 00:00:00 GMT
set-cookie: WMF-DP=907;Path=/;HttpOnly;secure;Expires=Sun, 10 Nov 2024 00:00:00 GMT
x-client-ip: 138.199.29.44
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-transform
set-cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4; Path=/; secure; Domain=.wikipedia.org
set-cookie: NetworkProbeLimit=0.001;Path=/;Secure;SameSite=Lax;Max-Age=3600
accept-ranges: bytes
content-length: 80041
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022 HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:34:27 GMT
etag: W/"c3efs"
expires: Sun, 10 Nov 2024 01:39:27 GMT
cache-control: public, max-age=300, s-maxage=300, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: text/css; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/431
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 23247
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=startup&only=scripts&raw=1&skin=vector-2022

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=startup&only=scripts&raw=1&skin=vector-2022 HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:35:01 GMT
etag: W/"1ue2y"
expires: Sun, 10 Nov 2024 01:35:01 GMT
cache-control: public, max-age=300, s-maxage=300, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=startup&only=scripts&skin=vector-2022&sourcemap=1&version=1ue2y
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/616
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 20027
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=site.styles&only=styles&skin=vector-2022

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=site.styles&only=styles&skin=vector-2022 HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:31:26 GMT
etag: W/"ncsa1"
expires: Sun, 10 Nov 2024 01:31:40 GMT
cache-control: public, max-age=300, s-maxage=300, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: text/css; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/2072
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 2306
GET

https://en.wikipedia.org/static/images/icons/wikipedia.png

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /static/images/icons/wikipedia.png HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:30:10 GMT
etag: "3484-62309f0dda7c0"
expires: Mon, 10 Nov 2025 01:30:10 GMT
cache-control: max-age=31536000
server: ATS/9.2.5
last-modified: Thu, 26 Sep 2024 18:31:03 GMT
content-length: 13444
access-control-allow-origin: *
content-type: image/png
age: 365
x-cache: cp3073 miss, cp3073 hit/1273
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
GET

https://en.wikipedia.org/static/images/mobile/copyright/wikipedia-wordmark-en.svg

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /static/images/mobile/copyright/wikipedia-wordmark-en.svg HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:30:14 GMT
expires: Mon, 10 Nov 2025 01:30:14 GMT
cache-control: max-age=31536000
server: ATS/9.2.5
etag: W/"181a-62309f0dda7c0"
last-modified: Thu, 26 Sep 2024 18:31:03 GMT
access-control-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
vary: Accept-Encoding
age: 361
x-cache: cp3073 hit, cp3073 hit/4073
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
content-length: 2604
GET

https://en.wikipedia.org/static/images/mobile/copyright/wikipedia-tagline-en.svg

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /static/images/mobile/copyright/wikipedia-tagline-en.svg HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 22:03:36 GMT
expires: Sun, 09 Nov 2025 22:03:36 GMT
cache-control: max-age=31536000
server: ATS/9.2.5
etag: W/"24e4-62309f0dda7c0"
last-modified: Thu, 26 Sep 2024 18:31:03 GMT
access-control-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
vary: Accept-Encoding
age: 12759
x-cache: cp3073 hit, cp3073 hit/59697
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
content-length: 3264
GET

https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=menu&format=original&lang=en&skin=vector-2022&version=5rirp

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?modules=skins.vector.icons&image=menu&format=original&lang=en&skin=vector-2022&version=5rirp HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://en.wikipedia.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:11:26 GMT
etag: W/"5rirp"
expires: Mon, 09 Dec 2024 08:11:26 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
content-disposition: inline;filename*=UTF-8''menu.svg
access-control-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/462902
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 195
GET

https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=ellipsis&format=original&lang=en&skin=vector-2022&version=5rirp

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?modules=skins.vector.icons&image=ellipsis&format=original&lang=en&skin=vector-2022&version=5rirp HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://en.wikipedia.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:12:19 GMT
etag: W/"5rirp"
expires: Mon, 09 Dec 2024 08:12:19 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
content-disposition: inline;filename*=UTF-8''ellipsis.svg
access-control-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/459763
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 191
GET

https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=language&variant=progressive&format=original&lang=en&skin=vector-2022&version=5rirp

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?modules=skins.vector.icons&image=language&variant=progressive&format=original&lang=en&skin=vector-2022&version=5rirp HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://en.wikipedia.org
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 23:50:57 GMT
cache-control: public, s-maxage=31536000, max-age=31536000, immutable
server: ATS/9.2.5
x-content-type-options: nosniff
access-control-allow-origin: *
last-modified: Tue, 05 Nov 2024 04:01:32 GMT
content-type: image/svg+xml
content-encoding: gzip
vary: Accept-Encoding
age: 6318
x-cache: cp3073 hit, cp3073 hit/27300
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
content-length: 241
GET

https://en.wikipedia.org/w/skins/Vector/resources/skins.vector.styles/images/link-external-small-ltr-progressive.svg?fb64d

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/skins/Vector/resources/skins.vector.styles/images/link-external-small-ltr-progressive.svg?fb64d HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:35:31 GMT
etag: W/"5rirp"
expires: Mon, 09 Dec 2024 08:35:31 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
content-disposition: inline;filename*=UTF-8''language.svg
access-control-allow-origin: *
content-type: image/svg+xml
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/451555
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 445
GET

https://en.wikipedia.org/w/resources/src/mediawiki.skinning/images/magnify-clip-ltr.svg?8330e

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/resources/src/mediawiki.skinning/images/magnify-clip-ltr.svg?8330e HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 03:55:13 GMT
cache-control: public, s-maxage=31536000, max-age=31536000, immutable
server: ATS/9.2.5
x-content-type-options: nosniff
access-control-allow-origin: *
last-modified: Tue, 05 Nov 2024 04:00:34 GMT
content-type: image/svg+xml
content-encoding: gzip
vary: Accept-Encoding
age: 78062
x-cache: cp3073 hit, cp3073 hit/744570
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
content-length: 247
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=ext.gadget.ReferenceTooltips%2Cswitcher&skin=vector-2022&version=rqy9n

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=ext.gadget.ReferenceTooltips%2Cswitcher&skin=vector-2022&version=rqy9n HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:39:16 GMT
etag: W/"rqy9n"
expires: Mon, 09 Dec 2024 08:39:16 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=ext.gadget.ReferenceTooltips%2Cswitcher&skin=vector-2022&sourcemap=1&version=rqy9n
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 miss, cp3073 hit/189045
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 6960
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=ext.visualEditor.core.utils.parsing%7Cext.visualEditor.desktopArticleTarget.init%7Cext.visualEditor.progressBarWidget%2CsupportCheck%2CtargetLoader%2CtempWikitextEditorWidget%2Ctrack%2Cve&skin=vector-2022&version=goyk7

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=ext.visualEditor.core.utils.parsing%7Cext.visualEditor.desktopArticleTarget.init%7Cext.visualEditor.progressBarWidget%2CsupportCheck%2CtargetLoader%2CtempWikitextEditorWidget%2Ctrack%2Cve&skin=vector-2022&version=goyk7 HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 07:42:04 GMT
etag: W/"goyk7"
expires: Mon, 09 Dec 2024 07:42:04 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=ext.visualEditor.core.utils.parsing%7Cext.visualEditor.desktopArticleTarget.init%7Cext.visualEditor.progressBarWidget%2CsupportCheck%2CtargetLoader%2CtempWikitextEditorWidget%2Ctrack%2Cve&skin=vector-2022&sourcemap=1&version=goyk7
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/218742
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 16439
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=ext.centralNotice.bannerHistoryLogger%2CchoiceData%2Cdisplay%2CgeoIP%2CimpressionDiet%2CkvStore%2ClargeBannerLimit%2ClegacySupport%2CstartUp%7Cext.centralauth.ForeignApi%2Ccentralautologin%7Cext.checkUser.clientHints%7Cext.cite.ux-enhancements%7Cext.cx.eventlogging.campaigns%7Cext.cx.model%7Cext.cx.uls.quick.actions%7Cext.echo.centralauth%7Cext.eventLogging%2CnavigationTiming%2Cpopups%2CwikimediaEvents%7Cext.growthExperiments.SuggestedEditSession%7Cext.uls.common%2Cinterface%2Cpreferences%2Cwebfonts%7Cext.urlShortener.toolbar%7Cjquery%2Coojs%2Csite%7Cjquery.client%2CmakeCollapsible%2CtextSelection%7Cjquery.uls.data%7Cmediawiki.ForeignApi%2CString%2CTitle%2CUri%2Capi%2Cbase%2Ccldr%2Ccookie%2Cexperiments%2CjqueryMsg%2Clanguage%2Crouter%2Cstorage%2Ctoc%2Cuser%2Cutil%2CvisibleTimeout%7Cmediawiki.ForeignApi.core%7Cmediawiki.editfont.styles%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.media%2Cready%7Cmediawiki.page.watch.ajax%7Cmmv.bootstrap%2Ccodex%7Cmw.cx.SiteMapper%7Coojs-ui.styles.icons-interactions%7Cskins.vector.clientPreferences%2Cjs%7Cskins.vector.icons.js%7Cwikibase.client.vector-2022%7Cwikibase.sidebar.tracking&skin=vector-2022&version=1jlqy

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=ext.centralNotice.bannerHistoryLogger%2CchoiceData%2Cdisplay%2CgeoIP%2CimpressionDiet%2CkvStore%2ClargeBannerLimit%2ClegacySupport%2CstartUp%7Cext.centralauth.ForeignApi%2Ccentralautologin%7Cext.checkUser.clientHints%7Cext.cite.ux-enhancements%7Cext.cx.eventlogging.campaigns%7Cext.cx.model%7Cext.cx.uls.quick.actions%7Cext.echo.centralauth%7Cext.eventLogging%2CnavigationTiming%2Cpopups%2CwikimediaEvents%7Cext.growthExperiments.SuggestedEditSession%7Cext.uls.common%2Cinterface%2Cpreferences%2Cwebfonts%7Cext.urlShortener.toolbar%7Cjquery%2Coojs%2Csite%7Cjquery.client%2CmakeCollapsible%2CtextSelection%7Cjquery.uls.data%7Cmediawiki.ForeignApi%2CString%2CTitle%2CUri%2Capi%2Cbase%2Ccldr%2Ccookie%2Cexperiments%2CjqueryMsg%2Clanguage%2Crouter%2Cstorage%2Ctoc%2Cuser%2Cutil%2CvisibleTimeout%7Cmediawiki.ForeignApi.core%7Cmediawiki.editfont.styles%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.media%2Cready%7Cmediawiki.page.watch.ajax%7Cmmv.bootstrap%2Ccodex%7Cmw.cx.SiteMapper%7Coojs-ui.styles.icons-interactions%7Cskins.vector.clientPreferences%2Cjs%7Cskins.vector.icons.js%7Cwikibase.client.vector-2022%7Cwikibase.sidebar.tracking&skin=vector-2022&version=1jlqy HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 22:08:00 GMT
etag: W/"1jlqy"
expires: Sun, 08 Dec 2024 23:02:02 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=ext.centralNotice.bannerHistoryLogger%2CchoiceData%2Cdisplay%2CgeoIP%2CimpressionDiet%2CkvStore%2ClargeBannerLimit%2ClegacySupport%2CstartUp%7Cext.centralauth.ForeignApi%2Ccentralautologin%7Cext.checkUser.clientHints%7Cext.cite.ux-enhancements%7Cext.cx.eventlogging.campaigns%7Cext.cx.model%7Cext.cx.uls.quick.actions%7Cext.echo.centralauth%7Cext.eventLogging%2CnavigationTiming%2Cpopups%2CwikimediaEvents%7Cext.growthExperiments.SuggestedEditSession%7Cext.uls.common%2Cinterface%2Cpreferences%2Cwebfonts%7Cext.urlShortener.toolbar%7Cjquery%2Coojs%2Csite%7Cjquery.client%2CmakeCollapsible%2CtextSelection%7Cjquery.uls.data%7Cmediawiki.ForeignApi%2CString%2CTitle%2CUri%2Capi%2Cbase%2Ccldr%2Ccookie%2Cexperiments%2CjqueryMsg%2Clanguage%2Crouter%2Cstorage%2Ctoc%2Cuser%2Cutil%2CvisibleTimeout%7Cmediawiki.ForeignApi.core%7Cmediawiki.editfont.styles%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.media%2Cready%7Cmediawiki.page.watch.ajax%7Cmmv.bootstrap%2Ccodex%7Cmw.cx.SiteMapper%7Coojs-ui.styles.icons-interactions%7Cskins.vector.clientPreferences%2Cjs%7Cskins.vector.icons.js%7Cwikibase.client.vector-2022%7Cwikibase.sidebar.tracking&skin=vector-2022&sourcemap=1&version=1jlqy
link: </static/images/project-logos/enwiki.png>;rel=preload;as=image;media=not all and (min-resolution: 1.5dppx),</static/images/project-logos/enwiki-1.5x.png>;rel=preload;as=image;media=(min-resolution: 1.5dppx) and (max-resolution: 1.999999dppx),</static/images/project-logos/enwiki-2x.png>;rel=preload;as=image;media=(min-resolution: 2dppx)
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/5816
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 204087
GET

https://en.wikipedia.org/static/images/project-logos/enwiki.png

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /static/images/project-logos/enwiki.png HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 23:55:04 GMT
etag: "1f0f-62309f0dda7c0"
expires: Sun, 09 Nov 2025 00:44:58 GMT
cache-control: max-age=31536000
server: ATS/9.2.5
last-modified: Thu, 26 Sep 2024 18:31:03 GMT
content-length: 7951
access-control-allow-origin: *
content-type: image/png
age: 6071
x-cache: cp3073 hit, cp3073 hit/9338
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.referencePreviews%7Cext.math.popup%7Cext.popups.main&skin=vector-2022&version=1e38y

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=ext.cite.referencePreviews%7Cext.math.popup%7Cext.popups.main&skin=vector-2022&version=1e38y HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 07:07:20 GMT
etag: W/"1e38y"
expires: Mon, 09 Dec 2024 07:07:20 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=ext.cite.referencePreviews%7Cext.math.popup%7Cext.popups.main&skin=vector-2022&sourcemap=1&version=1e38y
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/179933
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 24709
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=mw.config.values.wbCurrentSiteDetails%2CwbRepo%7Coojs-ui.styles.icons-editing-core&skin=vector-2022&version=15dcf

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=mw.config.values.wbCurrentSiteDetails%2CwbRepo%7Coojs-ui.styles.icons-editing-core&skin=vector-2022&version=15dcf HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 07:19:58 GMT
etag: W/"15dcf"
expires: Mon, 09 Dec 2024 07:19:58 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=mw.config.values.wbCurrentSiteDetails%2CwbRepo%7Coojs-ui.styles.icons-editing-core&skin=vector-2022&sourcemap=1&version=15dcf
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/215608
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 1781
GET

https://login.wikimedia.org/wiki/Special:CentralAutoLogin/checkLoggedIn?type=script&wikiid=enwiki

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /wiki/Special:CentralAutoLogin/checkLoggedIn?type=script&wikiid=enwiki HTTP/2.0
host: login.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:22:30 GMT
server: mw-web.codfw.main-568dbbbfd9-8b74p
x-content-type-options: nosniff
accept-ch:
vary: Accept-Encoding,Cookie,Authorization
content-type: text/javascript; charset=utf-8
content-encoding: gzip
age: 826
x-cache: cp3073 miss, cp3073 hit/2389
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
set-cookie: WMF-Last-Access=10-Nov-2024;Path=/;HttpOnly;secure;Expires=Thu, 12 Dec 2024 00:00:00 GMT
x-client-ip: 138.199.29.44
cache-control: private, s-maxage=0, max-age=0, must-revalidate, no-transform
set-cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4; Path=/; secure; Domain=.wikimedia.org
set-cookie: NetworkProbeLimit=0.001;Path=/;Secure;SameSite=Lax;Max-Age=3600
accept-ranges: bytes
content-length: 207
GET

https://en.wikipedia.org/static/favicon/wikipedia.ico

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /static/favicon/wikipedia.ico HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001
cookie: enwikimwuser-sessionId=dd64ea27d83973da4292

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 04:38:07 GMT
expires: Sat, 08 Nov 2025 14:12:46 GMT
cache-control: max-age=31536000
server: ATS/9.2.5
etag: W/"aae-62309f0dda7c0"
last-modified: Thu, 26 Sep 2024 18:31:03 GMT
access-control-allow-origin: *
content-type: image/vnd.microsoft.icon
content-encoding: gzip
vary: Accept-Encoding
age: 75488
x-cache: cp3073 hit, cp3073 hit/3566387
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
accept-ranges: bytes
content-length: 1035
GET

https://en.wikipedia.org/w/load.php?lang=en&modules=skins.vector.search.codex.scripts%7Cvue&skin=vector-2022&version=1czqo

msedge.exe

Remote address:

185.15.59.224:443

Request

GET /w/load.php?lang=en&modules=skins.vector.search.codex.scripts%7Cvue&skin=vector-2022&version=1czqo HTTP/2.0
host: en.wikipedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: WMF-Last-Access=10-Nov-2024
cookie: WMF-Last-Access-Global=10-Nov-2024
cookie: WMF-DP=907
cookie: GeoIP=GB:ENG:London:51.51:-0.12:v4
cookie: NetworkProbeLimit=0.001
cookie: enwikimwuser-sessionId=dd64ea27d83973da4292

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:29:32 GMT
etag: W/"1czqo"
expires: Mon, 09 Dec 2024 08:29:32 GMT
cache-control: public, max-age=2592000, s-maxage=2592000, stale-while-revalidate=60
vary: Accept-Encoding
server: ATS/9.2.5
x-content-type-options: nosniff
sourcemap: /w/load.php?lang=en&modules=skins.vector.search.codex.scripts%7Cvue&skin=vector-2022&sourcemap=1&version=1czqo
content-type: text/javascript; charset=utf-8
content-encoding: gzip
x-cache: cp3073 hit, cp3073 hit/328066
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3073"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
age: 0
accept-ranges: bytes
content-length: 69956
DNS

upload.wikimedia.org

msedge.exe

Remote address:

8.8.8.8:53

Request

upload.wikimedia.org

IN A

Response

upload.wikimedia.org

IN A

185.15.59.240
DNS

meta.wikimedia.org

msedge.exe

Remote address:

8.8.8.8:53

Request

meta.wikimedia.org

IN A

Response

meta.wikimedia.org

IN CNAME

dyna.wikimedia.org

dyna.wikimedia.org

IN A

185.15.59.224
DNS

login.wikimedia.org

msedge.exe

Remote address:

8.8.8.8:53

Request

login.wikimedia.org

IN A

Response

login.wikimedia.org

IN CNAME

dyna.wikimedia.org

dyna.wikimedia.org

IN A

185.15.59.224
GET

https://upload.wikimedia.org/wikipedia/en/thumb/1/18/Wana_Decrypt0r_screenshot.png/240px-Wana_Decrypt0r_screenshot.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/en/thumb/1/18/Wana_Decrypt0r_screenshot.png/240px-Wana_Decrypt0r_screenshot.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 22:42:34 GMT
etag: 7b37b498137ab97f2034157fea2053e3
server: ATS/9.2.5
content-type: image/webp
content-disposition: inline;filename*=UTF-8''Balance%2C_by_David.svg.webp
last-modified: Sun, 07 Jul 2024 13:59:49 GMT
content-length: 252
age: 10421
x-cache: cp3074 hit, cp3074 hit/284
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
GET

https://upload.wikimedia.org/wikipedia/commons/thumb/2/20/Countries_initially_affected_in_WannaCry_ransomware_attack.svg/300px-Countries_initially_affected_in_WannaCry_ransomware_attack.svg.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/commons/thumb/2/20/Countries_initially_affected_in_WannaCry_ransomware_attack.svg/300px-Countries_initially_affected_in_WannaCry_ransomware_attack.svg.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 08:27:29 GMT
etag: 7a0e6ebb7cb8e20c41e31f22a06b9a06
server: ATS/9.2.5
content-type: image/png
content-length: 225
x-object-meta-sha1base36: izotfcwfnido5p3t96qkktmk3faxdzv
last-modified: Wed, 08 Sep 2021 14:37:13 GMT
age: 61726
x-cache: cp3074 hit, cp3074 hit/246879
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
GET

https://upload.wikimedia.org/wikipedia/commons/thumb/1/17/Balance%2C_by_David.svg/21px-Balance%2C_by_David.svg.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/commons/thumb/1/17/Balance%2C_by_David.svg/21px-Balance%2C_by_David.svg.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 10:23:50 GMT
etag: 8c0acec0bf61e4ab7ab3ee69c7ba50f5
server: ATS/9.2.5
content-type: image/webp
content-disposition: inline;filename*=UTF-8''Crystal_Clear_app_linneighborhood.svg.webp
last-modified: Sun, 07 Jul 2024 00:49:12 GMT
content-length: 936
age: 54745
x-cache: cp3074 hit, cp3074 hit/1978
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
GET

https://upload.wikimedia.org/wikipedia/commons/thumb/f/f9/Crystal_Clear_app_linneighborhood.svg/19px-Crystal_Clear_app_linneighborhood.svg.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/commons/thumb/f/f9/Crystal_Clear_app_linneighborhood.svg/19px-Crystal_Clear_app_linneighborhood.svg.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 04:56:36 GMT
etag: 74a60b20768120f6c614ceefcbb2e968
server: ATS/9.2.5
content-type: image/webp
content-disposition: inline;filename*=UTF-8''Commons-logo.svg.webp
last-modified: Thu, 13 Jun 2024 06:14:05 GMT
content-length: 878
age: 74378
x-cache: cp3074 hit, cp3074 hit/117303
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
GET

https://upload.wikimedia.org/wikipedia/en/thumb/4/4a/Commons-logo.svg/30px-Commons-logo.svg.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/en/thumb/4/4a/Commons-logo.svg/30px-Commons-logo.svg.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sat, 09 Nov 2024 06:04:18 GMT
server: ATS/9.2.5
etag: W/475691b24fc0b3a3031abf3e09ec4cdf
content-type: image/svg+xml
x-object-meta-sha1base36: ormpfbzt7pp075byu6d8luvv4lt8irz
last-modified: Fri, 20 Jul 2018 00:39:48 GMT
content-encoding: gzip
vary: Accept-Encoding
age: 70317
x-cache: cp3074 hit, cp3074 hit/175781
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
content-length: 851
GET

https://upload.wikimedia.org/wikipedia/commons/4/4d/Icon_pdf_file.png

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/commons/4/4d/Icon_pdf_file.png HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-disposition: inline;filename*=UTF-8''Wana_Decrypt0r_screenshot.png
last-modified: Mon, 02 Jan 2023 05:55:49 GMT
content-length: 51445
date: Sun, 10 Nov 2024 01:36:15 GMT
server: envoy
etag: 71f9c4f03d6b4a35d2f370a5b8d016c5
age: 0
x-cache: cp3074 hit, cp3074 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
GET

https://upload.wikimedia.org/wikipedia/commons/a/aa/Lock-red-alt-2.svg

msedge.exe

Remote address:

185.15.59.240:443

Request

GET /wikipedia/commons/a/aa/Lock-red-alt-2.svg HTTP/2.0
host: upload.wikimedia.org
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://en.wikipedia.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:36:15 GMT
etag: a2be1cc40c8ca32744bfbedc25ab6a0d
server: ATS/9.2.5
content-type: image/png
content-disposition: inline;filename*=UTF-8''Countries_initially_affected_in_WannaCry_ransomware_attack.svg.png
last-modified: Sat, 06 Jul 2024 18:02:50 GMT
content-length: 28608
age: 0
x-cache: cp3074 hit, cp3074 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3074"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 604800, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 604800, "failure_fraction": 0.05, "success_fraction": 0.0}
x-client-ip: 138.199.29.44
x-content-type-options: nosniff
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
DNS

224.59.15.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

224.59.15.185.in-addr.arpa

IN PTR

Response

224.59.15.185.in-addr.arpa

IN PTR

text-lbesams wikimediaorg
DNS

240.59.15.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

240.59.15.185.in-addr.arpa

IN PTR

Response

240.59.15.185.in-addr.arpa

IN PTR

upload-lbesams wikimediaorg
DNS

raw.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.110.133

raw.githubusercontent.com

IN A

185.199.109.133

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.111.133
OPTIONS

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

msedge.exe

Remote address:

185.199.110.133:443

Request

OPTIONS /limiteci/WannaCry/refs/heads/main/WannaCry.EXE HTTP/2.0
host: raw.githubusercontent.com
accept: */*
access-control-request-method: GET
access-control-request-headers: turbo-visit
origin: https://github.com
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-mode: cors
sec-fetch-site: cross-site
sec-fetch-dest: empty
referer: https://github.com/limiteci/WannaCry?tab=readme-ov-file
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 403

cache-control: no-cache
content-type: text/html; charset=utf-8
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 0
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:;
accept-ranges: bytes
date: Sun, 10 Nov 2024 01:36:27 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600066-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1731202587.168854,VS0,VE2
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 0480ec096ce6564e1d4a593d4a1df68b895c3518
expires: Sun, 10 Nov 2024 01:41:27 GMT
vary: Authorization,Accept-Encoding
DNS

133.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.110.199.185.in-addr.arpa

IN PTR

Response

133.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-133githubcom
DNS

244.244.23.193.in-addr.arpa

Remote address:

8.8.8.8:53

Request

244.244.23.193.in-addr.arpa

IN PTR

Response

244.244.23.193.in-addr.arpa

IN PTR

dannenbergtorauthde
DNS

244.244.23.193.in-addr.arpa

Remote address:

8.8.8.8:53

Request

244.244.23.193.in-addr.arpa

IN PTR

Response

244.244.23.193.in-addr.arpa

IN PTR

dannenbergtorauthde
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

2.19.117.143

a1851.dscg2.akamai.net

IN A

2.19.117.148
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A
DNS

227.227.217.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.227.217.95.in-addr.arpa

IN PTR

Response

227.227.217.95.in-addr.arpa

IN PTR

static22722721795clientsyour-serverde
DNS

227.227.217.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.227.217.95.in-addr.arpa

IN PTR
DNS

99.40.63.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.40.63.178.in-addr.arpa

IN PTR

Response

99.40.63.178.in-addr.arpa

IN PTR

static994063178clientsyour-serverde
DNS

99.40.63.178.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.40.63.178.in-addr.arpa

IN PTR

Response

99.40.63.178.in-addr.arpa

IN PTR

static994063178clientsyour-serverde
GET

https://www.bing.com/qbox?query=you+are+an+i&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f01c57ac0165469ab9bab6b1e8a13855&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+i&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f01c57ac0165469ab9bab6b1e8a13855&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 272
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f175c034bff959c0f8b095d485e
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CSdEQ0S+V5YSfH6oF5Mlq7tcWadan8wVinEwD/4XjSQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:39 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:39 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=33C7998E22276AC611D08CBD23E26B24; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:39 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202839.1ad47e64
GET

https://www.bing.com/qbox?query=you+are+an+id&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fa83651f5cd74f8ab210484b8f58b428&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+id&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fa83651f5cd74f8ab210484b8f58b428&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 269
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f18b92e4f788057b7c3d361dc0c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XMj4S7u17S1fFX2u0cEnxV0a45htgxEWNORv4zljI+U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:40 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3C52BD730CEA6CF2325BA8400D326DB9; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:40 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202840.1ad481e5
GET

https://www.bing.com/qbox?query=you+are+an+idi&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5fb1064d49a04e1481d7507b2a32a2d9&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idi&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5fb1064d49a04e1481d7507b2a32a2d9&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 265
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f18ca324959b517c2eac55ea4ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-B+NRpwPQKAs0XHMwnlx5v60mBDI31exvGa0iqwbyTdE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:40 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:40 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0839A880509B63401DCBBDB3513D62AE; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:40 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202840.1ad4833a
GET

https://www.bing.com/qbox?query=you+are+an+idio&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=d21a6bdf787442ebb8dab19b65283aad&oit=4&cp=15&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idio&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=d21a6bdf787442ebb8dab19b65283aad&oit=4&cp=15&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 223
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1bf6bf4e15b8baa9af904af332
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZY/dGnwTp2/aTKa3ygnMqq9A7M8VRUhwKi1lEuowKZs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0CA8193FFDC561B1346F0C0CFC5F6072; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202843.1ad4922f
GET

https://www.bing.com/qbox?query=you+are+an+idiot&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=4118e89f7b1d4fe78466a1d5f7f85c27&oit=4&cp=16&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=4118e89f7b1d4fe78466a1d5f7f85c27&oit=4&cp=16&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 223
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1bc35e4bd1be62470649233ada
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-uG/b+50FZrC49pz8DkXsqoJsDv3hZAOdoH1rdVPTJIg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=28207106E983659A2A646435E89F644C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202843.1ad49298
GET

https://www.bing.com/qbox?query=you+are+an+idiot.&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=8f94c38011f5469b816865d411babc20&oit=4&cp=17&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=8f94c38011f5469b816865d411babc20&oit=4&cp=17&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 269
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1b5aa14471843bd1afa0eccf5b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-LZmsSR8K2kQ9DbuvD/uT/s3O7VnLCVo6UEfByzAvjcQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:43 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3D9FD659B6B36AC73705C36AB75C6B45; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202843.1ad49450
GET

https://www.bing.com/qbox?query=you+are+an+idiot.e&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f2f69b9e13f3482187485bfd9f7e9297&oit=4&cp=18&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.e&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f2f69b9e13f3482187485bfd9f7e9297&oit=4&cp=18&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 265
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1c7cae4395a26210ebf6bdbe61
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-AqqoN8sbtlnpMjRDdpvn6Zt6W3Xct/g1hYFhhFq1vi4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:44 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2EB1F60D067D6E922800E33E070B6F4E; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202844.1ad4955d
GET

https://www.bing.com/qbox?query=you+are+an+idiot.ex&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=32bcd040d14f4fa7bad511f4e8f8f996&oit=4&cp=19&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.ex&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=32bcd040d14f4fa7bad511f4e8f8f996&oit=4&cp=19&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 286
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1c82854b128c5e74ab6288565a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bLoyzhbfWv9++pR1SLvsB1yGoAAe6eNqxquYEIxLRRU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:44 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1F3C01BC5F1D62382756148F5ED763DC; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202844.1ad495e6
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=3fd9012cdfb94250af5c1c6a278f1691&oit=4&cp=20&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=3fd9012cdfb94250af5c1c6a278f1691&oit=4&cp=20&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 291
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1cc3944a1aa294325040b9811f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-J0r3uuRWXdyOqQg+hThrh892S/v9rva5LqGOR2rgCKA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:44 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0B5F3C1CC388642A29C9292FC250655F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202844.1ad4983d
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7e87978732bb4550b3d1bad6954969f0&oit=4&cp=21&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7e87978732bb4550b3d1bad6954969f0&oit=4&cp=21&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Sun, 10 Nov 2024 01:39:45 GMT
vary: Accept-Encoding
x-eventid: 67300f1d0a7b4c7aa1c8749f4bac697b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wv4WwL0BXLBzyPLjfzfvD4ConmouUg5x/Qn2LbsZG0M='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Sun, 10 Nov 2024 01:40:45 GMT
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202845.1ad49c81
set-cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1; Domain=.bing.com; Path=/; Expires=Sun, 10 Nov 2024 03:40:45 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+dow&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=ad71871a8ba948dcbe11f88b562b1d59&oit=4&cp=24&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+dow&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=ad71871a8ba948dcbe11f88b562b1d59&oit=4&cp=24&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a0eb
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+down&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5db15aed135f43cc92c9206e0ba18713&oit=4&cp=25&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+down&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5db15aed135f43cc92c9206e0ba18713&oit=4&cp=25&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a0f9
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+downl&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=9c3d275f0394431b8d905cad44540a3d&oit=4&cp=26&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+downl&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=9c3d275f0394431b8d905cad44540a3d&oit=4&cp=26&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2eb
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+downlo&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7cad49a6d0164ad7a4a3c04de34be8f4&oit=4&cp=27&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+downlo&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7cad49a6d0164ad7a4a3c04de34be8f4&oit=4&cp=27&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2ec
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+downloa&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=1793d383bb73488b84c4690cb02fa8fe&oit=4&cp=28&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+downloa&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=1793d383bb73488b84c4690cb02fa8fe&oit=4&cp=28&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2ed
GET

https://www.bing.com/qbox?query=you+are+an+idiot.exe+download&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fb778c19d2d34b77afb6bf30a9adbdb3&oit=4&cp=29&pgcl=4

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /qbox?query=you+are+an+idiot.exe+download&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fb778c19d2d34b77afb6bf30a9adbdb3&oit=4&cp=29&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2ee
GET

https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2ea
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 380
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1

Response

HTTP/2.0 200

content-length: 16040
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67300f1e59a14e5e95471c4451c6af68
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/y9+02BkwPmYeANC9zdUiWYBxOB8l7OGHDrFnkGGDfk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Sun, 10 Nov 2024 01:40:46 GMT
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202846.1ad4a2fe
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:16,%22BC%22:310,%22SE%22:-1,%22TC%22:-1,%22H%22:666,%22BP%22:670,%22CT%22:674,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,3929,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:16,%22BC%22:310,%22SE%22:-1,%22TC%22:-1,%22H%22:666,%22BP%22:670,%22CT%22:674,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,3929,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4398&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a38d
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%227.05%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A1041%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%227.05%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A1041%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a393
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a38e
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a392
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2229%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2229%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:47 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a38f
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300f1f2ce4406bad093240fb25d23f
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-od2pvYRWua6Z4vi878aqVN4tH1aWMgoppDam2WiM0X0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300f1f2ce4406bad093240fb25d23f|AFD:67300f1f2ce4406bad093240fb25d23f|2024-11-10T01:40:47.050Z
date: Sun, 10 Nov 2024 01:40:47 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a390
GET

https://www.bing.com/images/sbi?mmasync=1&ig=7FB282773276439892D8B68B9545F5D2&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /images/sbi?mmasync=1&ig=7FB282773276439892D8B68B9545F5D2&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 1011
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67300f1f80d6410a98ec860acb45344e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-R2LRw0uKfmIjPTF3zbatUYhOURWvjPgdU53MW7eNUj4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67300f1f80d6410a98ec860acb45344e|AFD:67300f1f80d6410a98ec860acb45344e|2024-11-10T01:40:47.051Z
date: Sun, 10 Nov 2024 01:40:47 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Mon, 10-Nov-2025 01:40:47 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-11-10; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202847.1ad4a391
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1703%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1703%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4adf4
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8147
x-check-cacheable: YES
cache-control: public, max-age=886770
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae26
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845802%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845802%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae23
POST

https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=7FB282773276439892D8B68B9545F5D2

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=7FB282773276439892D8B68B9545F5D2 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 695
cache-control: public, max-age=5184000
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae2a
x-check-cacheable: YES
POST

https://www.bing.com/rewardsapp/reportActivity?IG=7FB282773276439892D8B68B9545F5D2&IID=SERP.5064&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /rewardsapp/reportActivity?IG=7FB282773276439892D8B68B9545F5D2&IID=SERP.5064&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 178
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae20
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae22
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 778
x-check-cacheable: YES
cache-control: public, max-age=5158320
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae27
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845836%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845918%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845968%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845836%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845918%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845968%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae2d
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300f2113704e50a4c4e102dd712b7c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jIUyYCXYmMs0ALMNEn2ULtwsCdPoovplC2ftwrNx0BQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 3474874083244FEA8B0E46F0B9E7F15A Ref B: LON601060108042 Ref C: 2024-11-10T01:40:49Z
date: Sun, 10 Nov 2024 01:40:49 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:40:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049; domain=.bing.com; expires=Fri, 05-Dec-2025 01:40:49 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae24
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 782
cache-control: public, max-age=5184000
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae28
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae47
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4ae21
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1308
cache-control: public, max-age=1102962
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae5a
x-check-cacheable: YES
GET

https://th.bing.com/th?q=You+Are+an+Udiot+exe+SOG&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?q=You+Are+an+Udiot+exe+SOG&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=1315663
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae7c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.tJs2c0jzvdJaE8CaV9D8jgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.tJs2c0jzvdJaE8CaV9D8jgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=1053809
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae89
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Youareanidiot+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?q=Youareanidiot+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=1943090
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aebc
x-check-cacheable: YES
GET

https://th.bing.com/th?q=You+Are+an+Idoit.org&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?q=You+Are+an+Idoit.org&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 552
cache-control: public, max-age=1968289
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aebf
x-check-cacheable: YES
GET

https://th.bing.com/th?q=OMG+exe+Download+Free&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?q=OMG+exe+Download+Free&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1308
cache-control: public, max-age=1098251
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aec0
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Youareanidiot.org+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?q=Youareanidiot.org+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: dsc=order=Video
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: SRCHS=PC=U531
cookie: bm_sv=0784206D96773F8FA632297FA7ED6358~YAAQtXd7XL5/6wGTAQAA9gu7Exm6paNN+sQpc8nH9eYKdgMZ5/TzeQ6APZneRIXj35HakSBt9E/jikwmLsK3PuGxs5QdNCTumgwcH++XAoVmtQU1z78ZfohjITljfsi4CJaQ4WL5IyFC8ozvdbf63sTWueoIPnoJH7ig0ZyM6jSryKhFnTCQ6fbRVycyMjanUFShfSDQAsIir4GibfFvrhh0k2/SC8KCwKezZmvyBliE4sFXjgGxNX2aOZqe0Q==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=5&WTS=63866798909&HV=1731202540&PRVCW=1280&PRVCH=609

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=921654
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aec1
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221432%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221948%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221432%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221948%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=9&ihpd=0&ispd=9&rc=27&rb=0&gb=0&rg=200&pc=24&mtu=0&rbb=0&g=0&cid=&clo=0&v=9&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:35:36.4677104+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=27&RB=0&GB=0&RG=200&RP=24
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202849.1ad4aebd
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202848235%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202848235%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=287701
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aee2
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1308
cache-control: public, max-age=1081977
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MEM_HIT from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aee7
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 692
cache-control: public, max-age=5183948
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae25
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110013536
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5014
x-check-cacheable: YES
cache-control: public, max-age=886681
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4af06
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3134
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aee8
x-check-cacheable: YES
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202848439%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202848439%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 993
cache-control: public, max-age=5183936
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4ae29
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6701
cache-control: public, max-age=1209600
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aefd
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 21380
cache-control: public, max-age=1209542
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4aeeb
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7140
cache-control: public, max-age=569683
date: Sun, 10 Nov 2024 01:40:49 GMT
x-cache: TCP_MISS from a92-123-119-181.deploy.akamaitechnologies.com (AkamaiGHost/11.7.0.1-2fb65fbfa7ad4f98bbb706cf20e2b5f6) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.b5777b5c.1731202849.1ad4b0b4
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202850.1ad4b3b8
GET

https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:40:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202854.1ad4c72b
GET

https://th.bing.com/th?id=OVP.87bmSPfzwPuOvwNamcY8wwEsDh&w=216&h=120&c=7&bgcl=21d5b9&r=0&o=6&pid=13.1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.87bmSPfzwPuOvwNamcY8wwEsDh&w=216&h=120&c=7&bgcl=21d5b9&r=0&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 2761
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300f2c740d41afbcdf6173a192a797
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-S6/3+7CU9nHrxmgJDWKPI8uJCl8aiUjWB3rwTAQWi8w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EC84E78DF7184D1184B8291F4CEDDB34 Ref B: LON601060107031 Ref C: 2024-11-10T01:41:00Z
date: Sun, 10 Nov 2024 01:41:00 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:41:00 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202860.1ad4de88
GET

https://th.bing.com/th?id=OVP.wc_AHzlggyZrlLzQIo2fnQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.wc_AHzlggyZrlLzQIo2fnQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 13071
content-type: text/html; charset=utf-8
content-encoding: br
expires: -1
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67300f2cb4ee49c9b805e10d60d5d952
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7N92HNyLfu4VzwE7n5sN3Ze2AVOCR2iKv1DlLqxXLyk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: FE8606E44E9248C09E254030ACD8BD5F Ref B: LON601060103054 Ref C: 2024-11-10T01:41:00Z
date: Sun, 10 Nov 2024 01:41:00 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:41:00 GMT; path=/; HttpOnly
set-cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202860.1ad4e01f
GET

https://th.bing.com/th?id=OVP.sb3rvyhZ6TgS2tUzPfgoYwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.sb3rvyhZ6TgS2tUzPfgoYwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:41:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202860.1ad4e074
GET

https://th.bing.com/th?id=OVP.rZ0TfUTXVOeh1sGKwK2UHAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.rZ0TfUTXVOeh1sGKwK2UHAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:41:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202860.1ad4e073
GET

https://th.bing.com/th?id=OVP.7ADEyp1AKVuM8eIZbYfxQQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /th?id=OVP.7ADEyp1AKVuM8eIZbYfxQQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:41:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202862.1ad4e845
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19292
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67300f37166140e78624cc4538f01e72
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-12MwvaUjtXt3rUtO+xSZ+uw1AEBQEa5t5imcK4MorBM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: CD0676C68A7842EBB165E4869AA764B3 Ref B: LON601060106052 Ref C: 2024-11-10T01:41:11Z
content-length: 0
date: Sun, 10 Nov 2024 01:41:11 GMT
set-cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74; expires=Fri, 05-Dec-2025 01:41:11 GMT; path=/; HttpOnly
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202871.1ad510c7
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1091
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1214
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E677E27F74324503A263EBF82267D1F6 Ref B: LON601060108042 Ref C: 2024-11-10T01:41:11Z
date: Sun, 10 Nov 2024 01:41:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202871.1ad51162
GET

https://www.bing.com/Identity/Dropdown?n=1&IID=SERP.5068&IG=7FB282773276439892D8B68B9545F5D2&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /Identity/Dropdown?n=1&IID=SERP.5068&IG=7FB282773276439892D8B68B9545F5D2&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:41:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202871.1ad51172
GET

https://www.bing.com/hamburger/scfo?ver=51195484&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531&IID=SERP.5067&IG=7FB282773276439892D8B68B9545F5D2&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /hamburger/scfo?ver=51195484&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531&IID=SERP.5067&IG=7FB282773276439892D8B68B9545F5D2&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Sun, 10 Nov 2024 01:41:11 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.b5777b5c.1731202871.1ad5117a
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
cookie: SRCHS=PC=U531
GET

https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
cookie: SRCHS=PC=U531
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2257
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
cookie: SRCHS=PC=U531
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7FB282773276439892D8B68B9545F5D2&ID=SERP,5213.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dde3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90%26ntb%3D1

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=7FB282773276439892D8B68B9545F5D2&ID=SERP,5213.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dde3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
cookie: SRCHS=PC=U531
GET

https://www.bing.com/ck/a?!&&p=de3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=you+are+an+idiot.exe+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90&ntb=1

msedge.exe

Remote address:

92.123.128.181:443

Request

GET /ck/a?!&&p=de3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=you+are+an+idiot.exe+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2100
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

92.123.128.181:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 286
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=ADF094477F104F35A28F74E0CD82C40C&dmnchg=1
cookie: ak_bmsc=B6E09F55B5E338E461E6163BED7D7986~000000000000000000000000000000~YAAQp3d7XGoTzAmTAQAAhM+vExk89Qn08auzt9BZKssWur39Slp9268K5sltxSmSmlNMHYyHYhn88yJnCSZdxuzW/yKV87mwF7RBIZz9y8tSG+Z+r3hoyyJrEZC/ZbVqa9W81X5ggAQmICWZ6anuBJNwOEq/Nuwl9RRHpHIQjKtlVOpkP09dZ6EOn2IkTTIPZGUxO0nXU1/Ff396A6QGyn9twncKyNxwHAK38MChhCYiGouhFBWTcg3lFLDZNe2zGeEBhWZHBsK9sFqmox1NcsAGtGtOzUotbanD46FcQhto85YfMcow7/yNu+bto1aUmeU2H6n7vxdlRVcKVrAd02GMxZrZmFI2FOgQsuiD01pXyEdUVLClp53E+Tlyty2d0CqGEXGOGcg=
cookie: MUIDB=306D1E91B57D6CCC1A300BA2B44C6D74
cookie: SRCHUSR=DOB=20241110&T=1731202109000
cookie: _Rwho=u=d&ts=2024-11-10
cookie: MSPTC=pM4C780x-xib4IiUn52uR5tyOqs0IkJa08yd8SYYock
cookie: ipv6=hit=1731205723621&t=4
cookie: _EDGE_S=F=1&SID=3D06F3BEC48862CA11CEE68DC5B96311&mkt=en-gb
cookie: BCP=AD=0&AL=0&SM=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=3929&DPR=1.0&UTC=0&PV=10.0&EXLTT=6&WTS=63866798909&HV=1731202846&PRVCW=1280&PRVCH=609
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=10&ihpd=0&ispd=10&rc=30&rb=0&gb=0&rg=200&pc=27&mtu=0&rbb=0&g=0&cid=&clo=0&v=10&l=2024-11-09T08:00:00.0000000Z&lft=2024-11-09T00:00:00.0000000-08:00&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-11-10T01:40:47.0738607+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=3D06F3BEC48862CA11CEE68DC5B96311&R=30&RB=0&GB=0&RG=200&RP=27
cookie: USRLOC=HS=1&ELOC=LAT=12.923898696899414|LON=100.88612365722656|N=Nong%20Prue%2C%20Chon%20Buri|ELT=4|&BLOCK=TS=241110014049
DNS

181.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

181.128.123.92.in-addr.arpa

IN PTR

Response

181.128.123.92.in-addr.arpa

IN PTR

a92-123-128-181deploystaticakamaitechnologiescom
DNS

181.128.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

181.128.123.92.in-addr.arpa

IN PTR

Response

181.128.123.92.in-addr.arpa

IN PTR

a92-123-128-181deploystaticakamaitechnologiescom
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.133

e86303.dscx.akamaiedge.net

IN A

92.123.128.169
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

92.123.128.149

e86303.dscx.akamaiedge.net

IN A

92.123.128.169

e86303.dscx.akamaiedge.net

IN A

92.123.128.181

e86303.dscx.akamaiedge.net

IN A

92.123.128.146

e86303.dscx.akamaiedge.net

IN A

92.123.128.167

e86303.dscx.akamaiedge.net

IN A

92.123.128.161

e86303.dscx.akamaiedge.net

IN A

92.123.128.133
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A
DNS

archive.org

msedge.exe

Remote address:

8.8.8.8:53

Request

archive.org

IN A

Response

archive.org

IN A

207.241.224.2
DNS

archive.org

msedge.exe

Remote address:

8.8.8.8:53

Request

archive.org

IN A
DNS

94.172.21.65.in-addr.arpa

Remote address:

8.8.8.8:53

Request

94.172.21.65.in-addr.arpa

IN PTR

Response

94.172.21.65.in-addr.arpa

IN PTR

static941722165clientsyour-serverde
DNS

94.172.21.65.in-addr.arpa

Remote address:

8.8.8.8:53

Request

94.172.21.65.in-addr.arpa

IN PTR

Response

94.172.21.65.in-addr.arpa

IN PTR

static941722165clientsyour-serverde
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A
GET

https://github.com/HackerSinhos/You-Are-An-Idiot

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:12 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"f0ce766994d18f2d94ec9c1dc06caafd"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: D5E8:2AE5F6:38F3D4:4055BD:67300F38
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"fd823639b3ef6e848669ede5a7030f56"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 82
x-github-request-id: D5E8:2AE5F6:38F442:405638:67300F39
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/hovercards/citation/sidebar_partial?tree_name=main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/hovercards/citation/sidebar_partial?tree_name=main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"f37e50066b20c5fd4863cd503a344884"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 348
x-github-request-id: D5E8:2AE5F6:38F442:405639:67300F39
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"2ac58d1b16c51bed0f7d29846ada3939"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: D5E8:2AE5F6:38F442:40563A:67300F39
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/latest-commit/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/latest-commit/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: D5E8:2AE5F6:38F442:405635:67300F39
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: D5E8:2AE5F6:38F442:405634:67300F38
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/tree-commit-info/main

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/tree-commit-info/main HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"f9ef05f144cda7a9f2a6bd2870b5c8f6"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 430
x-github-request-id: D5E8:2AE5F6:38F442:405637:67300F39
GET

https://github.com/HackerSinhos/You-Are-An-Idiot/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /HackerSinhos/You-Are-An-Idiot/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=rk5i3mLV9O1Qif9VP3H2BWFunTQdfkC857USnbh%2Bz1jiINO%2BzM4zuRslqvP8rywkWCVT%2B7b02zObA2wctITDhHlC02SaFYpViTqayob3fzixmz0BNGnpL0O6f4FNx7Fq5rFFAaBL%2Bgbmnh6Ju0k6e36DD2lE38Ji%2BjtFEH58PjcInladqBRw8LssudhwcRyWe32HJxOM0XF5H7F7uxW14hVn1EqEqBaA3%2FyzFWdrVeJlvZV4Mb0UVWg9BE%2FBoFL%2Fose%2F25EGZn9XzEq2M54AXA%3D%3D--gS5ulwkC%2BiwDYRy1--plsLOxNUf5e5pVi%2B4D%2BshQ%3D%3D
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: D5E8:2AE5F6:38F442:405636:67300F39
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.234.57

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.196

s3-w.us-east-1.amazonaws.com

IN A

52.216.211.1

s3-w.us-east-1.amazonaws.com

IN A

52.217.133.65

s3-w.us-east-1.amazonaws.com

IN A

3.5.27.156

s3-w.us-east-1.amazonaws.com

IN A

3.5.2.87

s3-w.us-east-1.amazonaws.com

IN A

54.231.236.1

s3-w.us-east-1.amazonaws.com

IN A

52.217.136.225
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A
DNS

collector.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.114.22
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1062
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:41:13 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002368
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DB3F:151B0:F95EC:1A31A8:67300F39
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1342
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:41:13 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002884
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DB3F:151B0:F95EC:1A31A9:67300F39
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1604
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:41:18 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003315
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DB3F:151B0:F997A:1A3779:67300F39
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.22:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1365
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Sun, 10 Nov 2024 01:41:19 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003370
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: DB3F:151B0:F9A24:1A3880:67300F3E
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 645
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:41:13 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206473
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C03A:32174A:1113571:1260A4F:67300F39
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 148
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/HackerSinhos/You-Are-An-Idiot
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.904613848.1731202036
cookie: logged_in=no
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Sun, 10 Nov 2024 01:41:18 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1731206478
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: C03A:32174A:11136AE:1260BA7:67300F39
DNS

22.114.82.140.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.114.82.140.in-addr.arpa

IN PTR

Response

22.114.82.140.in-addr.arpa

IN PTR

lb-140-82-114-22-iadgithubcom

20.26.156.215:443

https://github.com/manifest.json

tls, http2

msedge.exe

3.7kB
62.6kB
39
57

HTTP Request

GET https://github.com/Sn8ow/NoEscape.exe_Virus/releases/tag/1.0.0

HTTP Response

200

HTTP Request

GET https://github.com/Sn8ow/NoEscape.exe_Virus/security/overall-count

HTTP Request

GET https://github.com/Sn8ow/NoEscape.exe_Virus/releases/expanded_assets/1.0.0

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.199.109.133:443

https://avatars.githubusercontent.com/u/73496225?v=4&size=40

tls, http2

msedge.exe

396.6kB
18.6MB
7994
13358

HTTP Request

GET https://avatars.githubusercontent.com/u/80784394?s=40&v=4

HTTP Response

200

HTTP Request

GET https://objects.githubusercontent.com/github-production-release-asset-2e65be/381404847/aa923980-d8fc-11eb-84a3-1f1e3f022926?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=releaseassetproduction%2F20241110%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20241110T012818Z&X-Amz-Expires=300&X-Amz-Signature=b2c8e659a95eab663c9cacc925705ccbf7dd812f1a1fde04e90068193c73e8e5&X-Amz-SignedHeaders=host&response-content-disposition=attachment%3B%20filename%3DNoEscape.exe.zip&response-content-type=application%2Foctet-stream

HTTP Response

200

HTTP Request

GET https://camo.githubusercontent.com/23b6c2b3787caef9c6d3766ccd509ed433ae8532885416fdaeb4a74045b5fe47/68747470733a2f2f7777772e6865616c74686361726569746e6577732e636f6d2f73697465732f6869746e2f66696c65732f57616e6e614372792d6c6f636b73637265656e3731325f302e706e67

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/70485500?v=4&size=40

HTTP Response

200

HTTP Request

GET https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/73496225?v=4&size=40

HTTP Response

200
185.199.110.154:443

https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

tls, http2

msedge.exe

39.9kB
1.0MB
635
866

HTTP Request

GET https://github.githubassets.com/assets/light-3e154969b9f9.css

HTTP Request

GET https://github.githubassets.com/assets/dark-9c5b7a476542.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-4cf0d59ab51a.css

HTTP Request

GET https://github.githubassets.com/assets/primer-d4805e363e20.css

HTTP Request

GET https://github.githubassets.com/assets/global-79a5b5698a34.css

HTTP Request

GET https://github.githubassets.com/assets/github-6110438c1619.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

HTTP Request

GET https://github.githubassets.com/assets/primer-react.2beab350097eeaad3991.module.css

HTTP Request

GET https://github.githubassets.com/assets/releases-d27bae89dc62.css

HTTP Request

GET https://github.githubassets.com/assets/repository-1e3bbbee6b91.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-d1c774376d16.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b73fdff77a4e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-aff936e590ed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-247092-ee0bd6110c34.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-074ee5faa813.js

HTTP Request

GET https://github.githubassets.com/assets/environment-cd35650c2e9c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-4aa4b0e95669.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-6d3967acd51c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_combobox-nav_dist_index_js-node_modules_github_g-emoji-element_di-6ce195-53781cbc550f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-6afc16-87f32ad5fff1.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-f5498b8d4e5d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-d1a841-8f251a0656e7.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-1f651a-1e3d784c897c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-af0385-1d5998037c7f.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-54614839516b.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-403b2ee4138e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-634de60bacfa.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-ce7225a304c5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-f3aee1-e6893db9c19e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-f8a5485c982a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-858e043fcf76.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_scroll-anchoring_dist_scroll-anchoring_esm_js-node_modules_stacktrace-pa-a71630-6f3c4f0189d8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-0e07cc183eed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-0b5e12-7b36339d5147.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-eae9df0dd562.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-18d1c91a7872.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b0b4fd6f86a5.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-c89801ebbe15.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-009c7396246a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff531-bf7e5a3732fd.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-54f34167118d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-64905f-7a04a583a48c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-a6774a3bb897.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--680e8b-2691cc4bbb4c.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-043af64042a1.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-ac118cd54ac9.js

HTTP Request

GET https://github.githubassets.com/assets/primer-react-ae28f57a594c.js

HTTP Request

GET https://github.githubassets.com/assets/react-core-3a596bf6ecc1.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-7b7b5264f6c1.js

HTTP Request

GET https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-0e630d-04276437489b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-4896ddd4b7bb.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-c0fd3c9cc896.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hotkey_dist_index_js-no-d67c7f-bd7d077cdcb1.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-d25fac54a6bc.js

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-cb3d4f30c9ed.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-9a621ecbf672.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/sessions-c6a512e7180c.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-7917d5042068.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-1077a1578034.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-a18fad-c17189d94fd6.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-638a4cc4ec98.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-1546dc8c42cb.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-87c39cb5708f.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-ui_packages_trusted-types-policies_policy_ts--7cc11e-7a151d1da86f.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_cookie-consent-link-element_ts-23c1cb96287b.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_ghcc-consent-element_ts-2ab85b7d16d5.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_stack-tra-600f89-c19ded76330f.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_webauthn-get-element_ts-eba7ee3409f2.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-d06d275cbddc.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/code-53e56f0305ac.css

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-e53a3f-8dd800cdee0e.js

HTTP Request

GET https://github.githubassets.com/assets/codespaces-ff8464347da3.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-d241fe700755.js

HTTP Request

GET https://github.githubassets.com/assets/code-menu-15796c6acaff.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_primer_live-region-element_dis-037ad60-8582b70cd5a9.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-585c05e837f3.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-e1792bd5a31e.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-7a75d9f22fe9.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_verified-fetch_verified-fetch_ts-u-4672d1-c335d159760f.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-file-page-payload_ts-ui_packages_code-view-shared_comp-1beb66-8434ef8b268d.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-7207c9-945f0bbe7a2f.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview-c95ccf19b9b6.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-e5bc7e52e066.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_show-dialog-on-load-element_show-dialog-on-load-element_ts-eea3fdb40121.js

HTTP Response

200
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

tls, http2

msedge.exe

3.0kB
25.4kB
38
46

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Response

200
140.82.112.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

9.6kB
8.3kB
34
32

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
140.82.112.22:443

collector.github.com

tls

msedge.exe

989 B
4.5kB
9
7
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

2.9kB
6.6kB
19
20

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

2.8kB
6.6kB
18
20

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
20.26.156.215:443

https://github.com/Sn8ow/NoEscape.exe_Virus/releases/download/1.0.0/NoEscape.exe.zip

tls, http2

msedge.exe

2.2kB
8.7kB
14
16

HTTP Request

GET https://github.com/Sn8ow/NoEscape.exe_Virus/releases/download/1.0.0/NoEscape.exe.zip

HTTP Response

302
92.123.128.149:443

https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=8520b6cbc918431c9845a0ad97531fad&oit=1&cp=1&pgcl=4

tls, http2

msedge.exe

726.0kB
4.7MB
4070
5221

HTTP Request

GET https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=543d91bf6ace4f1d91f45cd2c58fd2df&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=bo&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=700c9e4b731c4f72b9ff28107abf7c7f&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bon&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=446c7813aba4449abbe89d9375e62a96&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonz&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=98fcc3f3deb64a738b1e5613264ecf70&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=2ca9a76963ea469b8912d985eeb4fd24&ig=0aeb8c2e52c74eb68aca177449ee4695&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:8,%22BC%22:258,%22SE%22:-1,%22TC%22:-1,%22H%22:352,%22BP%22:409,%22CT%22:411,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-444-mg.ico

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/rp/9JZoMKGwSFpYBOFiek9nl1XTYtg.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.0.2/js/widget.js?t=241109

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202108953%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108963%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108966%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108968%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108969%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108974%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202108976%2C%22Name%22%3A411%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108977%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108978%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202108979%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108980%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202108981%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=4fb30e&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OVP.RLNr1nVhnn4ZK4kAsQDNOAEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Bonzi+Buddy+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202109114%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Request

GET https://th.bing.com/th?q=Bonzi+Buddy+Windows+1.0&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Bonzi+Buddy+Episodes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Bonzi+Buddy+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Bonzi+Buddy+Install&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=284a18&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.70e6e139-e94e-409b-92a4-0edb5eab188f&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=007b8e&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.bcead17a-c490-4681-b823-c51cee191866&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.5c1388be-c2e9-43a4-8d4c-0571872d464f&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=211ef2&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.208dc4a0ef00e3e6a38409f16d1ad057&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.7c981adf524b78e11bf03e32204fcd68&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.WXZ3JiVFggBjqiXHJ8cRlVv46ko8Kg1q-4vag6g79SE&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.a2b0b9db1b0ecbec280ebf6b2f082af0&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK._K-sQ7LWiOXSOYYeqyjGck2G97-mb11n9gHuGGR6elY&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109218%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A1083%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202109388%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1088%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1089%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202109389%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://r.bing.com/rp/Zj5QqsSQi83uQ7b8BpArQo3Jsn4.br.css

HTTP Request

GET https://r.bing.com/rp/RBARmUXLe8rKWg9gEFXYysn3nEg.br.css

HTTP Request

GET https://r.bing.com/rp/TpPCFCXHYMX-2o17wlqq63GR6OE.br.css

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

400

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202109425%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202109438%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109478%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202109479%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109494%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109516%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202109568%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202109726%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202109897%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202110008%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110018%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110055%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202110056%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

HTTP Request

GET https://th.bing.com/th?id=OVP.MUQIn59XfE8pl0xdlvXaOgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.0AHwvEIpr7yk_qezj-1uxwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.WPbXcC9fX1ey7Be9XD_6NAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.J_WsAalzMtrYKRnSprdONAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110066%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.hp9p3JnyZb128i8wuSFh9gEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.s_UFiPBD2cIQzUcbi_c9GwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.Q-HgOGZYPJBP3u8MHm3DLwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.7AiUq8AXJZQdf0nMG-4gsQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OSK.5a801bf125e8acbd6a29fb67018ec264&w=102&h=102&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202110141%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22677.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221840.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202110147%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202110172%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=22BF82546CBD4580A22589796FF3608A&ID=SERP,5221.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:13,%22SE%22:-1,%22TC%22:-1,%22H%22:121,%22BP%22:128,%22CT%22:129,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=12.923898696899414&lon=100.88612365722656&dispName=Nong%2520Prue%252C%2520Chon%2520Buri&isEff=1&effLocType=4&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202121516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121527%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121530%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121531%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121538%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202121540%2C%22Name%22%3A48%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121541%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121546%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121547%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202121548%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121549%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1731202121774%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=22BF82546CBD4580A22589796FF3608A&iid=.5099&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121795%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Time%22%3A572%2C%22time%22%3A574%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202121899%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A575%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202121900%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5056&IG=22BF82546CBD4580A22589796FF3608A

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.5065&q=bonzi+buddy&cvid=2ca9a76963ea469b8912d985eeb4fd24&aqs=edge.0.0j69i57j0l5.2678j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=22BF82546CBD4580A22589796FF3608A&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=22BF82546CBD4580A22589796FF3608A&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=22BF82546CBD4580A22589796FF3608A

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum9%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f9%22}]

HTTP Response

200

HTTP Response

400

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1731202121919%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300c3df2ee4d62a1cb598603552bc5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202121929%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202121978%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202121992%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122011%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122048%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202122230%2C%22Name%22%3A%222%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202122382%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%5D

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202122507%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122520%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202122534%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122556%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122557%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202122619%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22218%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221294%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202122620%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202122654%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129414%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.RSSQB%22,%22FID%22:%22CI%22,%22Name%22:%22Show%22,%22Text%22:%22Triggered%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202129468%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&oit=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=7b32a85e133e4be3bf6bc5eca4404642&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=m%2Ca&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=9c6d8a2800654ee69a0ad505e55198ad&oit=4&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=m%2C&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8a3e7741725f41d88b5bb5a19e7b87e9&oit=4&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=62241c19735c49debe72bb07ac4258e1&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=m&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=8d869af1c919431fb48015f167c99b61&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=ma&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=ab5321c89ace4cfa8d234bffa4bc8784&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=mal&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=055afa88d2f3480fa2ac646b6c028468&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malw&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=484bacb595fb44dd9fef49fd00220cd3&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malwa&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=b0bf9ff67c8941ae91483316f0cf928a&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=malwar&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=e400cc4c44094a748461dcbd80e038c4&oit=1&cp=6&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=malware&language=en-US&pt=EdgBox&cvid=26544491d4a24dac8bd910e81329905d&ig=bc4ce0b40a7e456dbbfb190ca5331d7d&oit=1&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/search?q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSAAS.583A4DD495EACA405FE3CC0E5910887B&w=72&h=72&c=17&rs=1&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:29,%22BC%22:113,%22SE%22:-1,%22TC%22:-1,%22H%22:245,%22BP%22:262,%22CT%22:263,%22IL%22:12},%22ad%22:[-1,-1,1263,609,1263,4749,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202235520%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202235529%2C%22Name%22%3A1226%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235530%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235532%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235533%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=18&h=18&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=80&h=80&r=0&o=6&cb=B&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.7d3063c3-cd17-4792-8d4f-4e98c892a389&w=32&h=32&o=6&cb=s1&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.2c4a26df-86f7-4b62-8221-97f8afb20165&w=32&h=32&o=6&cb=s2&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.f176c120-c989-4954-89d5-7e700c6badfd&w=32&h=32&o=6&cb=s3&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=15&h=15&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.f530a571-80cd-4a14-ac38-29d912f8e412&w=15&h=15&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=fa0458&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=45ae33&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=2ac0e2&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=5a3214&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.6xlvWhoOL8FLZ1oalqMzwgEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.dmAYSHM8pXHS2U1BJU6u5QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.HMRh95fdXpat0hgQ0DVk5QEsDh&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.VHqt6QGZNpW6LWIgpYjLNgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.03oKR7v6xcgAVuTgGbXQBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.g4gsJBI7G3AnZJ7OLdItbwEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.Mx1Wn0NCCjROrif2HnAkZAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.pUm-W-TdreDGfJuApi1zBgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.2fNLvznximFdT9KUGlIZzAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Malwarebytes+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Malwarebytes+Account&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Activate+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Installer+Malwarebytes&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Malwarebytes+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2212%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=87df46&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.T-WpDxoO4MbW2wFgQqn2lgHaEM&w=80&h=80&c=1&vt=10&bgcl=93c0f9&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.c3176290-6dc1-48fc-8ea9-0a2babae1285&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=75942335FD9A46AD8439A87D46E15FA0&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.wR9NEeCX8eVGBq3HiwKzTQHaHa&w=80&h=80&c=1&vt=10&bgcl=c4659d&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=75942335FD9A46AD8439A87D46E15FA0

HTTP Request

GET https://th.bing.com/th?id=ODLS.1cd0a84e-cbe5-4e80-a52d-25f570b5425e&w=20&h=20&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.9ad225cc-519c-4d9d-821a-dc9f812443bf&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=ODLS.56527359-f07a-4ea8-9404-eeeef9bf36a1&w=20&h=20&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235534%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235554%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235562%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235563%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202235564%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202235566%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cbba7c54c6f82c0703ca9ef48c8%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202235976%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A1869%2C%22time%22%3A1872%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202236007%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1874%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236009%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1875%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202236010%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OSK.8334552b6adba8251c9759a7b0a81d7f&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.dd1c27f1c924d675df8a6e0773e91c88&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.5064&q=malwarebytes&cvid=26544491d4a24dac8bd910e81329905d&aqs=edge.0.0j69i57j0l5.2962j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.58526e4d858ad530b534a0eae0c57147&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202236016%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236127%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A0%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A1072%2C%22ARElementHeight%22%3A463%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225158%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A0%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A0%2C%22ARElementWidth%22%3A648%2C%22ARElementHeight%22%3A424%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A1%2C%22ARElementOffsetTop%22%3A16%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A536%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%5D

HTTP Request

GET https://www.bing.com/rp/qZeFzs7d4zbqMjvSUX0ww-DN1bY.png

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum6%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f6%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum10%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f10%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=75942335FD9A46AD8439A87D46E15FA0&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=8349C6C097A35BE18D9F8349C6C097A35BE18D9F&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=B695AB5D9E22E4E53EB2B695AB5D9E22E4E53EB2&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=890C4F1541A27D70CB60890C4F1541A27D70CB60&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=99910497FE2AB9C7B16599910497FE2AB9C7B165&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=8634F2341C6AE92172748634F2341C6AE9217274&vdpp=VideoAnswerHover&&IG=75942335FD9A46AD8439A87D46E15FA0&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22ARElementIndex%22%3A2%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A672%2C%22ARElementWidth%22%3A312%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Atrue%2C%22ARElementKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22ARElementIndex%22%3A3%2C%22ARElementOffsetTop%22%3A240%2C%22ARElementOffsetLeft%22%3A1008%2C%22ARElementWidth%22%3A200%2C%22ARElementHeight%22%3A200%2C%22ARElementDisplayed%22%3Afalse%2C%22ARElementKValue%22%3A%225160%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22ARElementLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A0%2C%22AnswerCardKValue%22%3A%225130%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A1%2C%22AnswerCardKValue%22%3A%225127%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22AnswerCardVisibleIndex%22%3A2%2C%22AnswerCardKValue%22%3A%225142%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202236231%2C%22Name%22%3A%22AnswerCardLoad%22%2C%22FID%22%3A%22Magazine%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202236313%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202236440%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236481%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202236489%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=300&h=186&c=14&rs=2&qlt=90

HTTP Request

GET https://th.bing.com/th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://th.bing.com/th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

HTTP Request

GET https://th.bing.com/th?id=OVFT.H22wfnLaMts7jaIaKAIItS&pid=News&w=30&h=30&c=14&rs=1&qlt=90

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236513%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=75942335FD9A46AD8439A87D46E15FA0

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221426.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222431.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202236567%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

400

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malwarebytes&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202236597%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202236834%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202238370%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%22%2C%22AsResponseLength%22%3A%22682%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202238441%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalwarebytes%2Cig%3AA716A8B70EDC4EC8B3F8F7A744679E3C%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202238473%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/news/NewsAnswerV2CarouselAjax?q=Malwarebytes&width=608&nccl=Lite&IG=75942335FD9A46AD8439A87D46E15FA0&IID=NEWS.401&SFX=0&disablecarousel=1&OMWQ=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OVFT._H3zAK0vCid6R6KDvuwFkC&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=ODF.HullNWitnrrqQAkCy3GC6Q&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.PQp3Vev073YUlmaqpVlZUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=ODF.WZt6rH4kWHVsV4OxW0h-hQ&pid=news&w=16&h=16&c=14&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.owsFqaM8pz4YOlug7C8pni&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.kOKMdnoIEscfWg&pid=news&w=43&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OJ.ykmRPkks0lGk5A&pid=news&w=75&h=12&rs=2

HTTP Request

GET https://www.bing.com/th?id=OVFT.Vo_9EyHg48lZ-b2a5eTOUS&pid=News&w=80&h=80&c=14&rs=2&qlt=90

HTTP Request

GET https://www.bing.com/th?id=OJ.iqcBQ1sGmNZPlQ&pid=news&w=61&h=12&rs=2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=malwarebytes&mkt=en-gb&qry=malware&cp=7&csr=1&msbqf=false&pths=1&cvid=75942335FD9A46AD8439A87D46E15FA0

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202244594%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A10462%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202244597%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.0426245f190f0ca2ef883e0ece5a14a0&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=75942335FD9A46AD8439A87D46E15FA0&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202244918}&log=UserEvent

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=75942335FD9A46AD8439A87D46E15FA0&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202244679%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Amalware%2Ci%3A1%2Cig%3A898268B3B14D42B2957DAC1338628453%22%2C%22AnswerInfo%22%3A%22MB%3B12%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202244680%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/search?q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:439,%22BP%22:450,%22CT%22:457,%22IL%22:14},%22ad%22:[-1,-1,1263,609,1263,4516,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%226.85%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202245533%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A471%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.Q8KiAyNGwlT_Ai6RQQqLGQHaFA&w=298&h=201&c=10&rs=1&qlt=99&bgcl=fffffe&r=0&o=6&pid=MultiSMRSV2Source

HTTP Request

GET https://th.bing.com/th?id=OADD2.8589956500910_1IR2EUFV19G3V452CZ&w=32&h=32&o=6&pid=21.2

HTTP Request

GET https://th.bing.com/th?id=OVP.bFI9ruhVpPMffbB6v5YzeAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Free+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Types+of+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Malware+Uninstaller&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Malware+Removal&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Windows+Malware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ORMS.45ab53c0c25cb179d7faeed11d4eaefb&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAA1olEHW.img&ehk=WPJSUGUX4FsIFXuvjkFe%2bzqK4vTBND2laMOrP1FX7O4%3d&w=16&h=16&o=6&pid=Wdp

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ORMS.caf4b4c012216423e3ea50434708b1ca&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fBB18qTPD.img&ehk=ACDsxTjOHHrtkcsDjD1VzRk%2bjzJVgwQaFiC32Ph6xjI%3d&w=16&h=16&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?id=ORMS.7b03e2dcd50165d9674fccaa99ac981b&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAywOab.img&ehk=rN51vCWhHy3dmBpw%2f4%2fYEcRTAocQ0Jd67gAoIdWUaSQ%3d&w=16&h=16&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?id=ORMS.596e88934344ffbc1a9d14ef8f22cb8c&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAX9HXl.img&ehk=JP6nTfVGTWk9xpcL1gh%2fj6CrohbqB1i4ryLzLxi7sGw%3d&w=16&h=16&o=6&pid=Wdp

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ORMS.5db5ce15b456680679adad8accdbe190&w=197&h=113&c=6&rs=2&o=6&pid=Wdp

HTTP Request

GET https://th.bing.com/th?u=https%3a%2f%2fimg-s-msn-com.akamaized.net%2ftenant%2famp%2fentityid%2fAAXVbDx.img&ehk=gdZRZFNyP9rv3%2bXTu8WN8bMTv2YWemdTgp3%2f6b6N0BY%3d&w=16&h=16&o=6&pid=Wdp

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.mL-mRi4hZGcERs5Pt8SYFwIIFk&w=216&h=120&c=7&bgcl=50dbf0&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OIP.hT_9L37Psuhb5Vs-QHP0AAHaD4&w=80&h=80&c=1&vt=10&bgcl=a2e427&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.5be76585-07ee-4d6b-8d21-0e70e3dff7cc&w=16&h=16&o=6&pid=Stories

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=16&h=16&o=6&pid=Stories

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.da122686-e506-4387-b883-15f33e83bbfc&w=16&h=16&o=6&pid=Stories

HTTP Request

GET https://th.bing.com/th?id=ODLS.2eb3a562-e68d-4b64-8755-6c06140f4654&w=16&h=16&o=6&pid=Stories

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.2dacb8d4-d86b-47f4-97a0-45e1c342ec2a&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245536%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202245556%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202245557%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A902%2C%22time%22%3A917%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202245836%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A918%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202245837%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=E9B4EEE704DA440DBD76C2146D78BB87&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.993613a0-d7b9-480e-bba4-695b017ed9f6&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c34f0c6f-0c1f-4d89-ad65-2e38ecc81010&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=E9B4EEE704DA440DBD76C2146D78BB87

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.5064&q=malware&qs=n&form=QBRE&sp=-1&lq=0&pq=malware&sc=15-7&sk=&cvid=75942335FD9A46AD8439A87D46E15FA0&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.tQiHAlQF_pLK2Ts9V__2uwHaE7&w=80&h=80&c=1&vt=10&bgcl=99819d&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.b7bf26b8-96cf-4b65-8ce1-128277d6e6d3&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.9J8e_M6g8xZUy5TK5lfTfgHaDt&w=80&h=80&c=1&vt=10&bgcl=f1a736&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OSK.ea9899573e620974426db30df1527976&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.4905be99d304a489df620ee0bb302e20&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.EcElDasThZnB-E--ul6X2SqqFyzrU1eeqncW2WdPhJQ&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.40f49d7944b6961b839d408c320a6cea&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.f376c9239e2ade4725003c8c7c19cb9e&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=E9B4EEE704DA440DBD76C2146D78BB87&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=ECD7663B35F07C5A9D44ECD7663B35F07C5A9D44&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EF66141C7D58D405D129EF66141C7D58D405D129&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=6DEB43719169D278C11B6DEB43719169D278C11B&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=88D8756E1E830D26E0FE88D8756E1E830D26E0FE&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=5103707905537EB0EA3F5103707905537EB0EA3F&vdpp=VideoAnswerHover&&IG=E9B4EEE704DA440DBD76C2146D78BB87&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cc5cfe24ad5960c6fcc8c07086c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202245862%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245882%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202245884%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202245897%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246087%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202246097%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202246179%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22Idx%22%3A%220%22%2C%22Total%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246232%2C%22Name%22%3A%22ActiveSlide%22%2C%22FID%22%3A%22StoryExp%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum47%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f47%22}]

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=E9B4EEE704DA440DBD76C2146D78BB87

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/stories?IID=SERP.5926&IG=E9B4EEE704DA440DBD76C2146D78BB87

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum53%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f53%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

400

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22CustomData%22%3A%22%7B%5C%22rep%5C%22%3Atrue%2C%5C%22med%5C%22%3Afalse%7D%22%2C%22T%22%3A%22CI.SettingsAudit%22%2C%22TS%22%3A1731202246233%2C%22Name%22%3A%22InitialSettings%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246303%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202246347%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.QbqZqm9y-cu3qpve7FYb8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.PuZPSSghgqqhPtxRzQDfiQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.pwyTCM56Mg3XcF2an9ljiAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.0uz3I1OMVBgmcBRqyCi7iQCoEs&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.GoeBXy3IU8duli-5u2NddQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.1VCukEUNQze49YyDvoFG4gIIII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246356%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.p4erdTYH1no59r--7Qa4VQEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.mH9L3iu4Lan21ECOrb6w1QGGII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OIP.3u-t1TSmFpQa0-IQ7YtCcAHaIY&w=163&h=184&rs=1&p=0&o=6&pid=Stories

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.HEROGyLxvWluhDKGUAzymL0UrujhjmXqRQYSC0Y78fJR0Dc&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E9B4EEE704DA440DBD76C2146D78BB87&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22637%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221438%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202246357%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225924.1%22%2C%22Category%22%3A%22CommonControls%22%2C%22time%22%3A%221345%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202246396%2C%22Name%22%3A%22Ready%22%2C%22FID%22%3A%22StoryExp%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202246437%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/aes/c.gif?type=mv&tids=33,35,37,39&rg=2b8312186e4e4b538eba8470993d5745&reqver=1.0

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=42bf59720d7d43e494a618776391f9d5&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bo&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=198f5ce7224b402fafc9ed3a1c9059bc&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bon&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a46e9fec8fbc49af8bb2b352ec62e983&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonz&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=6e17ac0230c7420a9bf6eb0acbdfcd4d&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=a7f43dd229874a6395f906162d4c44ef&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=04fd5e6acdd34f94870e5f9b348e86f9&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+b&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=ace4395c73a34e0cb039d59267a3d6b8&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+bu&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=13bdbfecf80d436888c796441c735670&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+bud&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=5ea964b21df1475388e1228a973dc6d3&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+budd&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=8fda649acf894809b326b69b67691154&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bonzi+buddy&language=en-US&pt=EdgBox&cvid=30a2115c4d244117a4b9eb021acc4d91&ig=caafaa6b844545cabfeb5a958cd5806b&oit=4&cp=11&pgcl=4

HTTP Request

GET https://www.bing.com/search?q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:224,%22SE%22:-1,%22TC%22:-1,%22H%22:467,%22BP%22:473,%22CT%22:488,%22IL%22:15},%22ad%22:[-1,-1,1263,609,1263,4579,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202269297%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A511%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269303%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269304%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OIP.OxBsr9xCk-RRpq9vOzHVaQAAAA&w=80&h=80&c=1&vt=10&bgcl=3b83ea&r=0&o=6&pid=5.1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=56805e&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.5gHzVl72Ai0UOP7djl1I7wHaDa&w=80&h=80&c=1&vt=10&bgcl=e744b6&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.JO-wZsQcQ1jWGCFE_7ebvQHgEO&w=216&h=120&c=7&bgcl=206222&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2211%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269310%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269313%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269318%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22OverlayBanner%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22OverlayBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269322%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263249%22%7D%2C%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1731202269323%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A1280%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1731202269326%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Time%22%3A1075%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269587%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202269588%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=1667B6398F6640F090534A09449B87B6&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=1667B6398F6640F090534A09449B87B6

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=1667B6398F6640F090534A09449B87B6&IID=SERP.5064&q=bonzi+buddy&cvid=30a2115c4d244117a4b9eb021acc4d91&aqs=edge.0.69i59j0l4j69i60l2.2661j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/flyout?channel=2&partnerId=AutoOpenFlyout&date=11%2F10%2F2024&isDarkMode=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=1667B6398F6640F090534A09449B87B6&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9B3BE94606751090D9079B3BE94606751090D907&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EF557CABBA2310B51FA4EF557CABBA2310B51FA4&vdpp=VideoAnswerHover&&IG=1667B6398F6640F090534A09449B87B6&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum52%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f52%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=1667B6398F6640F090534A09449B87B6

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cdd031149e599804e9673d92763%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202269599%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202269634%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202269832%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202269900%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202269993%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22BNPNotificationShown%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202270017%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270025%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Response

200

HTTP Response

400

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/riex-B4Wu33VmTnuzuD5P6KP00s.png

HTTP Request

GET https://www.bing.com/rp/f486BDVfMqELn3q3UfwjgS6uu4k.png

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22UIState%22%2C%22CompName%22%3A%22VideoReco%22%2C%22ErrorType%22%3A%22GetCollection%22%2C%22T%22%3A%22CI.SaveErr%22%2C%22TS%22%3A1731202270071%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202270081%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22812%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221571%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202270082%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202270330%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5971.2&url=javascript%3A%20void(0)

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.MCPDismissed%22,%22FID%22:%22CI%22,%22Name%22:%22W3C_Timestamp%22,%22Text%22:%223054%22}]

HTTP Request

GET https://www.bing.com/aes/c.gif?type=mv&rg=fcfc70abd9a14bdd8989283311f84fb7&SI=1&reqver=3.0

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=1667B6398F6640F090534A09449B87B6&TYPE=Event.ClientInst&DATA=%5B%7B%22ID%22%3A%2263249%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1731202271564%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=1667B6398F6640F090534A09449B87B6&ID=SERP,5219.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dbonzi%2Bbuddy%26u%3Da1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=6ab6d5bf858faf9f919ba962ec94cf6d1cd6b43390fc4c382076777637ad2f12JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=bonzi+buddy&u=a1aHR0cHM6Ly9ib256aWJ1ZGR5Lm9yZy9kb3dubG9hZC5odG1s&ntb=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=0fbdebe516c449cabf496e7f53fee3b4&oit=1&cp=1&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=is&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=7b27d66e84b041679fa073e9eea904a4&oit=1&cp=2&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=6a45337da6644fbb96a8fcbe1648c896&oit=1&cp=3&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+b&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=2b011f439e9e40e9a801b8a0b9e39d6e&oit=4&cp=4&pgcl=1

HTTP Request

GET https://www.bing.com/qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=b8c38d9a42c34351bed3471efc919ae1&oit=4&cp=5&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=f0da30f61d8a468aba09417405cd0304&oit=4&cp=6&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=ea672232af76417486d3a084a003e21b&ig=cced158ebe384a42a936ae53e10febc7&oit=4&cp=7&pgcl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d7e8cfdb639a40959fc3b6674986fe3c&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=22a088accb3b4f3b9dc3199ec062fcfa&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=18a1e141d09e4c48a157ff111d5efa2c&oit=4&cp=3&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=99c7c3f8274c48e48faf6424713d35a6&oit=4&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6cff8b2f3429422ba27605ad073547e2&oit=4&cp=5&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4fd63009baea427f9750df9b13a53172&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=fa8274c91b8e41bcb6277d73be6990ac&oit=4&cp=8&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+buddym+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=a8a934c0c46042edb603b564afb9837b&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+buddym&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=4d8868fe1fb54f568e5f568223cc3089&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e0f7165947934a4c832c701d4d2b014c&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=54fff4525d9c4afba26cb2ce9ca1d72d&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=edc9b9e0dda34a06a9f7e1a8af525ed6&oit=4&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=db3369f2ba7c4bd983c4f6e7e585b2fb&oit=4&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b2f98707b1354fe4853888fe12f0cf66&oit=4&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d55e6c17bada42aabd9357c76ebefc78&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=588643d4d489424a9665313f35f92b95&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=985333009a5947f3bbbcf3b97c19b349&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=s+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d29e8c5c200942e7804a094514137ab7&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=s&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=719add20f0224f7ea713b08b18e2da42&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=e4b0a1b29b2943f7bb58dd9944086ebd&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1977895d28854c749872fb73eb9c70da&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=is+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d17a205b4cd14247807f34d4f7a398a5&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=83a85c55b607443f982ed4e891b80d31&oit=4&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bo&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=396015d2c0a84c8f81881fb437fb3a01&oit=4&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bon&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c008d9f93dcc4cd694710128145a9bd3&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonz&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=b4f4a519ee3c4f84a572ebfa011c7ede&oit=4&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=5b3480c27df342c5ac82a7d7e8592ba9&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c386519a2eb74d0dafbc4382d0525c68&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+b&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=1ad7d6c6356f47bea797dbe64176610a&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+bu&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=eaa9ace73f6c40afac9f49d72161b479&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+bud&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=98459a2596114e1f8ee451097c612fbe&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+budd&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=d90a92e548b64fdeb3db0af4fbbf8f89&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=498df599af12497b997c9428a6769ad9&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=bad43d7f342b4d15b45f6ac1dfad7fa5&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+m&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=f420ffecea0442878b675420c704fb28&oit=4&cp=16&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+ma&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6e71e36d3b054f8ca98f903c6bf42c35&oit=4&cp=17&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+malw&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=6661651c1884431fb274a6552ac1162f&oit=4&cp=19&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+malwa&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=412162de564a4d539c49f8db5603f61f&oit=4&cp=20&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=is+bonzi+buddy+malwar&language=en-US&pt=EdgBox&cvid=d6e60caf998e41c28fdf52e33a5a9043&ig=c9f53d7b6a2943269aab2e6aaf8d76ee&oit=4&cp=21&pgcl=4

HTTP Request

GET https://www.bing.com/search?q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:32,%22BC%22:324,%22SE%22:-1,%22TC%22:-1,%22H%22:440,%22BP%22:448,%22CT%22:449,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4953,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202295677%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.45%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202295678%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A476%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295683%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295689%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&o=6&pid=Reference

HTTP Request

GET https://th.bing.com/th?id=ODLS.f339dac8-a915-4731-aced-1843d9cf9873&w=16&h=16&o=6&pid=Reference

HTTP Request

GET https://th.bing.com/th?id=ODLS.cca51efb-6639-49f5-959b-25809333d72b&w=16&h=16&o=6&pid=Reference

HTTP Request

GET https://th.bing.com/th?id=ODLS.ba4035cc-4181-443b-a90f-2e137989f2f9&w=16&h=16&o=6&pid=Reference

HTTP Request

GET https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.5a9fd284-89ce-4b00-aaf5-a5b5033145d4&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.dVwmBlQh3DAhV9pbsMa7TwHaDa&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.SaDUF7Mzthe0c7PlLsVOmQEkII&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.y7IxBeFU4Iwv1sRxUdws5wHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.KM42FUzljUoNZLrZJ5Ve0gHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.q3xdn6DlnXODW7wJVcJzUAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.keiWfZ1iitka2hRxn1AYZwDKFo&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.4ee909ad-359c-4f0c-82df-a6f70a016cc3&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.dff3174d-c8cf-4132-8c42-90ebaa81f245&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.43bc1662-8a2c-45ef-a6bd-93adb99b86ca&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.b161da63-f84a-479d-9af5-ac8faa9f9508&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.f14e2989-3e6a-4077-909f-4241445c16e4&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.ebdaa1e2-bda6-4146-a598-6292ca61f077&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.hLiWyJpmvXadlUlkMUO08QHaEK&w=80&h=80&c=1&vt=10&bgcl=0e4faf&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2222%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=FFE47836019D47B2B7F199CA244E4FFD&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=FFE47836019D47B2B7F199CA244E4FFD

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.5064&q=is+bonzi+buddy+malware&cvid=d6e60caf998e41c28fdf52e33a5a9043&aqs=edge.0.0l7.10822j0j4&FORM=ANAB01&PC=U531

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295699%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202295703%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300cf80ea146729fcffa83e1f62d0f%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202296087%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202296104%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22Time%22%3A1051%2C%22time%22%3A1054%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202296112%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1055%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202296113%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fbtoplk%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/wiki?hash=168748024AB9D8354528&order=1%2c2%2c3%2c4%2c5&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=7%2c1%2c11%2c7%2c6&sectionLines=7%2c5%2c5%2c8%2c5&answerID=5656&DataSource=DefaultProd&iid=SERP.5656&ig=FFE47836019D47B2B7F199CA244E4FFD

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/L-nYmICjtADpEJxTNradKdlXr-c.svg

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=FFE47836019D47B2B7F199CA244E4FFD&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=EA0B9C1A9D28C54B73EAEA0B9C1A9D28C54B73EA&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=CB1F8F4993BF534BB395CB1F8F4993BF534BB395&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=9963A6B56E76E4484B9B9963A6B56E76E4484B9B&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=C40E841CE5E0E72960C0C40E841CE5E0E72960C0&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=D30752A050A50794002AD30752A050A50794002A&vdpp=VideoAnswerHover&&IG=FFE47836019D47B2B7F199CA244E4FFD&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296122%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202296295%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202296323%2C%22Name%22%3A%225%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296458%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296482%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202296483%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OIP.RIuGs7V854F7LP-0qbLC5QHaD-&w=200&h=107&rs=1&qlt=80&o=6&pid=3.1

HTTP Request

GET https://th.bing.com/th?id=ODL.33d0e96cd7a36d273eb6314edc4e36c0&w=298&h=248&c=10&rs=1&qlt=99&o=6&pid=23.1

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296497%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296498%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=FFE47836019D47B2B7F199CA244E4FFD&sid=3D06F3BEC48862CA11CEE68DC5B96311

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202296567%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22647.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221508.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202296569%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202296597%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202296607%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%2C%7B%22HType%22%3A%22h%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202298114%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d2%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202300068%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=FFE47836019D47B2B7F199CA244E4FFD&TYPE=Event.ClientInst&DATA=%5B%7B%22HType%22%3A%22d5%22%2C%22AppNS%22%3A%22SERP%22%2C%22K%22%3A%225979.1%22%2C%22T%22%3A%22CI.Hover%22%2C%22TS%22%3A1731202303064%2C%22Name%22%3A%22TuringGenHover%22%2C%22FID%22%3A%22%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=aec71b410215436ca0fd7391770e5f0f&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=8561bcdd59e14f3b9f85341d96f93566&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=29b5882cf1db486e96ea67b3e232feff&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c377181af87e45688db22bf1b3103642&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=40faf4d27bd746128122fc21fb4c3469&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=da9b3c1e40324049a811d54be8534f13&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=bb007134e8484e31b8d07e08e2b85e4d&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=732bd2fcc28447a9b1a1ae903fed4393&oit=4&cp=9&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcv&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=d2713cdb9fec4526b6035d70d5d3bfcc&oit=4&cp=10&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcvh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=56a88b3a08474ec197c46ec564d01ad7&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcvhi&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=999d5e84ade3492caedd0725cb6dfefd&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcvhin&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=af6d43407fae496592deaac3cd451d12&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcvhing&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=182e09a665b3477996467d37930af296&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watcvhing%3F&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=267ca2a41dc64b13b8da9a6b0221e75b&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=27f813b1ca2c4c30b3c1c67ef40c3df9&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=57de5aec28bc4cb4bda594c9d7ed899e&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c17d856b9199453eab67efe78051ab38&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=bruh&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=10722eaf60304ea1863bfca55acf9715&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=bru&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=5b9deb2c29a04e668777e7c6d306800c&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=br&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7689d30dc6e84d2ba47cafe7db9fab51&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=b&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=f93da20c38c24b93b750e6953f2f4f8d&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=b030eb3c4f764b2fb96cdce140a27ef0&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=db18eb75416d4927b11209314ceaa4d2&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=58b3ff9f5ca244c29d716003441dfbb4&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=79b7edd6966d4cb58a7c61de52c141a7&oit=1&cp=4&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c49b769892c242fdb9407fbe0e53aa4c&oit=1&cp=5&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=legend&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=3f1a38de28174889b8c7416145452cad&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=legen&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=03c7cc4f4e2b4b9781d4c7ef9b6e0834&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=lege&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=7ef741a456d04e4191aba7ac3f8d0e07&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=leg&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=c0ed6a06773c49138e85d9d1d0dfda88&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=le&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=224fc598d51148c9878b1101f1faef4a&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=l&language=en-US&pt=EdgBox&cvid=d94f9bacde5d4e498b562d01779f61b5&ig=eea9e53d4118426e8763f3902f17f6d2&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=E9B4EEE704DA440DBD76C2146D78BB87&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469518}&log=UserEvent

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=1667B6398F6640F090534A09449B87B6&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=FFE47836019D47B2B7F199CA244E4FFD&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202469517}&log=UserEvent

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=22BF82546CBD4580A22589796FF3608A&CID=306D1E91B57D6CCC1A300BA2B44C6D74&TYPE=Event.TabFocusChanged&DATA=%5B%7B%22T%22%3A%22CI.TabFocusChanged%22%2C%22TS%22%3A1731202470377%2C%22Name%22%3A%22visible%22%2C%22FID%22%3A%22TabFocused%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=54ed5a761b3748198dfdc422966b8235&oit=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7de6ca800f3a47ec914993cbf20f74ce&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6e17b89c05894d258483ee289ed0542f&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=331fc9cb92484ac08fac0613dba8b5ee&oit=4&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=32ee344477ec4452be82e846e3d56599&oit=4&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=27e1fc1e12dd4ef0a1c94410ab6fb37b&oit=4&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=125e9a8085054ed09c3ee112fc80d5c4&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4fcbfd9f7f6648a8a472159ebe6feec5&oit=4&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=6ff799c1928a454d81a08d0f631f99bf&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e3879cdc902744099cce3eeb37011b28&oit=4&cp=10&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8ec909beebb9419083cea617a2a7917a&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=48d305c239984bb4991c1af2562026e2&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cf5f45e5b3d04135bbb6e7c597d4bc0c&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+tr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=e2547a8f29744854839ab2c6637b918f&oit=4&cp=14&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+trh&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=39cca3de1c8f49cea38a64865e57f461&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3962c4e5a91047db95bd750da76aebc4&oit=4&cp=16&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+trhat&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2e318871b2ef40529827bd673611fa8a&oit=4&cp=17&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+trha&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=db3dc929a221449984eae55a01a6e5f7&oit=4&cp=16&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+t&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=73ce9ba67f264f9a9dfddadacda2f5d3&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=31b985e361d240db90ca754d07289f89&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+do&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f3edf2845751491aa97f51c255f68d0b&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+d&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3324a621ac0f4c3193b4bdb943b72009&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=cbabc5e91d9a4364ac53e75fc72425f6&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didntr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=8c1a7b83ab7f4372af7192d12bcb9177&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+didnt&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b0ea3b776a0e4a78ab99b9e0d3618d2c&oit=4&cp=7&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+didn&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9190c9435b6f440dbb9f3aa6c62144ec&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+did&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7f6e0b30c6ec44a5b84ed96634023e82&oit=4&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=i+di&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=05583c82bb534e66b861073e2a71dc2e&oit=4&cp=4&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=i+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=825ac562b2ee49e3bb9eeae86fe0b74a&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=w&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=f682606682c043bfbf7f94b5343dfcc3&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wa&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=5ba513ced9fe4f87a7f143ee3cbc5143&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wannas+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=77511540d14d47109ba6eb5c48d300dc&oit=1&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+c&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=1a174cefb03845419d4439957d4b4c55&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9c03339e8bbc4d258b33a0906bede0cf&oit=4&cp=9&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=3c3f4ac449e447c3a192039fb78b0f41&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=4023d257647f4d6080cc359cbe4d4ec5&oit=4&cp=12&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creyanna+&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=965db656420c4dc0b346c91e689939bb&oit=4&cp=16&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creyanna&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=9b09328a444245e680d09e889839ff45&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creyann&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=d20f314ea2ce40c29e8de486e1d6e7bd&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creyan&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=957766eae77146629497c4f5399f4669&oit=4&cp=13&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=wannas+creya&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=2ca5da6656e14ad293951e1ec2ee9c91&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+crey&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=08d9a492845746f4b8f45555ec655446&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+cre&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7d87c590a32049d0a5d084d5477e9acd&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+cr&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=b2c7005a9c694e738012d2f962674a73&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=wannas+cry&language=en-US&pt=EdgBox&cvid=e2336ed89aec4db2a38a633feee245cc&ig=7741159540d9408a98f506476237c300&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:12,%22BC%22:322,%22SE%22:-1,%22TC%22:-1,%22H%22:460,%22BP%22:463,%22CT%22:521,%22IL%22:19},%22ad%22:[-1,-1,1263,609,1263,4311,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202510361%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A465%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510368%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510369%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510370%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.VebnoBKBk2Idm_ZsP91N2QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Virus&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Seventeen+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Don%27t+Wanna+Cry&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://www.bing.com/th?id=OIP.UBEahUQSxAGB2fzHoc4npwHaFj&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

HTTP Request

GET https://www.bing.com/th?id=OIP.oaKjPNVF7l0l6meJzzqHhwHaD8&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

HTTP Request

GET https://www.bing.com/th?id=OIP.XLHg39KYMZQrn3345pi2UwHaEn&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

HTTP Request

GET https://www.bing.com/th?id=OIP.yd7jTv3o84GLYmaalH34jwHaDh&w=182&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

HTTP Request

GET https://www.bing.com/th?id=OIP.VgUYRJhItNL8JKkxIJZ5bgHaE7&w=172&h=185&c=8&rs=1&qlt=90&o=6&pid=3.1&rm=2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Ransom&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Wallpaper&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Virus&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Meme&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Background&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+%ce%99%ce%9f%ce%a3&w=34&h=34&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.SDzjrdfYUwDHpZGcWG-AtgHaD4&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.a32cba3e-4b5b-4d95-bee4-4b9b2c3869db&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.20cd948f-abd8-42b2-b05c-d217d2760350&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.ghTzgapFcYmFo70DrSeXxAHaEc&w=80&h=80&c=1&vt=10&bgcl=347134&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.bf7f65c8-7c50-494b-b31d-ddc9c06a3c9c&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.9JEtIsdy0bY9vWvs3VpP7wHaD4&w=80&h=80&c=1&vt=10&bgcl=405c9c&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OSK.f61d5e24b78d16ddc943170b8fc16e54&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2210%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.2b33daf5d7cd303bff40b038dbd9a198&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510376%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510377%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510381%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1034%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510711%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1036%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202510712%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=D86EF285B83C4B11A3244491DAAE137D&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=D86EF285B83C4B11A3244491DAAE137D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=D86EF285B83C4B11A3244491DAAE137D&IID=SERP.5064&q=wannas+cry&cvid=e2336ed89aec4db2a38a633feee245cc&aqs=edge..69i57j0l6.19526j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=1%2c5%2c7%2c11%2c10%2c11%2c3&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5801&DataSource=DefaultProd&iid=SERP.5801&ig=D86EF285B83C4B11A3244491DAAE137D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum43%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f43%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dcef6bc4a99a80c5517531b91c5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202510725%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202510757%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202510776%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510887%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgImgAns%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202510952%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202510975%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511060%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202511094%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=115&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1

HTTP Request

GET https://th.bing.com/th?id=ODL.b055fcc46b8bb02568345ad0c74be294&w=171&h=87&c=10&rs=1&qlt=99&o=6&pid=23.1

HTTP Request

GET https://th.bing.com/th?id=OVP.bc0utrGmLwmEZ67GzhHUiwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.49_4-FQUO9KSOL5M1B9SKQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.xxf3lqsjFLR8u5tnDa0OWQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OSK.a55d2147e4ec2a0fa38a3889b62b2ebc&w=102&h=102&c=7&o=6&pid=SANGAM

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511102%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202511125%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22708%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221450%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202511126%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202511163%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=D86EF285B83C4B11A3244491DAAE137D&ID=SERP,6318.1&url=%2Fsearch%3Fq%3Dwannacry%26FORM%3DAWRE

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1731202513172}&log=UserEvent

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=D86EF285B83C4B11A3244491DAAE137D&Type=Event.ClientInst&DATA=[{%22T%22:%22SpellSuggestion%22,%22FID%22:%22CI%22,%22Name%22:%22Clickable%22,%22Text%22:%22requery%22}]

HTTP Request

GET https://www.bing.com/search?q=wannacry&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:13,%22BC%22:294,%22SE%22:-1,%22TC%22:-1,%22H%22:377,%22BP%22:381,%22CT%22:382,%22IL%22:24},%22ad%22:[-1,-1,1263,609,1263,3685,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202513739%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202513740%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A429%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513746%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513747%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.cBxkQqml49Tv0QTzsW6cDAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Ransomware&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Cyber+Attack&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.6c0fcfba-a7dd-4efb-baa1-9421f0b0dbd6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://th.bing.com/th?id=OVP.qvW2Ux3XcIoIBYbpszLbiAEsCg&w=216&h=120&c=7&bgcl=3d3224&r=0&o=6&pid=13.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.l79z_2vc89Xr9hwrX2ppoQIIEk&w=216&h=120&c=7&bgcl=a47840&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.6133f892-1cc2-43ba-b1c4-ca381d9fd68f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.bd3ba346-f9c2-490e-a8aa-f21dd033738a&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.fbf23055-0c6e-4012-a6ac-b9efa1cee4d7&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.e18f1e35-c05e-441c-8be7-151aaa572f7d&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%228%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=5FF1A294070E4343AB61F805E0E049E5&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513750%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202513753%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A808%2C%22time%22%3A817%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202513992%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A819%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202513994%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.5064&q=wannacry&FORM=AWRE

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/wiki?hash=3DA89B68261078C11D1C&order=2%2c3%2c4%2c5%2c6%2c7%2c8&width=608&open=0&accId=TopWikiRichCardV2&appNS=SERP&containsHeroSection=True&bgIndex=14%2c5%2c7%2c10%2c16%2c8%2c6&sectionLines=7%2c5%2c8%2c5%2c5%2c5%2c5&answerID=5802&DataSource=DefaultProd&iid=SERP.5802&ig=5FF1A294070E4343AB61F805E0E049E5

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum19%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f19%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/svctrlpack?mmasync=1&icnlbl=1&host=serp&IG=5FF1A294070E4343AB61F805E0E049E5&SFX=1&iid=SCPKG

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=697D117EA0437200D023697D117EA0437200D023&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=0

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=1CB90E227854DB891A7D1CB90E227854DB891A7D&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=1

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=FFF6B0C42B1D02484FD6FFF6B0C42B1D02484FD6&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=2

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=A7863877FFEC272D5E22A7863877FFEC272D5E22&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=3

HTTP Request

GET https://www.bing.com/videos/vdasync?f=ch&mid=90EADB78CF2FECCABB3F90EADB78CF2FECCABB3F&vdpp=VideoAnswerHover&&IG=5FF1A294070E4343AB61F805E0E049E5&IID=SERP.vrh.vsb_tr_chd_hc&SFX=4

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum57%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f57%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300dd2426242cfac142d8da29c3c8c%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202514008%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514027%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202514028%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514040%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514133%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202514210%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202514255%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514285%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202514300%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202514301%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.XS8kyo2DWpZs5G4Bvbs1GgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.xiaC0O1F9gsxjpX96BCmagHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.vMU80F5gZ9B1yClRvjcvjAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.o2A5Z5dsC3TOZdZNgV5mOAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.M0l5qgeFlM8ZAFmzOkeCFgEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514312%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514320%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514321%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.ikFNDh05uBn9OLgL1znnkAEkII&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.KP6OXSHSNTkbJcpSt93daQFRJY&w=115&h=204&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

POST https://www.bing.com/mysaves/collections/get?Comp=VideoReco&PIG=5FF1A294070E4343AB61F805E0E049E5&sid=3D06F3BEC48862CA11CEE68DC5B96311

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202514324%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22580%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221149%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202514326%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202514396%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Txt%22%3A%22GetCollections%22%2C%22ColCount%22%3A%220%22%2C%22T%22%3A%22CI.Saves%22%2C%22TS%22%3A1731202514413%2C%22Name%22%3A%22SaveControl%22%2C%22FID%22%3A%22%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1731202529970,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Request

GET https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

HTTP Request

GET https://th.bing.com/th?id=OM.ETx9hoM1F0X3Xw_1730571357&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

206

HTTP Request

GET https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%226121.1%22,%22TS%22:1731202530346,%22DU%22:580,%22THLT%22:352,%22RCLT%22:null,%22MOS%22:16456,%22MOT%22:580,%22IsMT%22:1,%22VPST%22:495,%22VDT%22:468,%22MaxVPT%22:580,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry&cp=8&csr=1&zis=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1731202532639%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202532706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202532843%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%2Cig%3AABEDC2B095EE4271894304D3CE409C0B%22%2C%22AnswerInfo%22%3A%22HS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202532920%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533367%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A20205%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202533380%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20&cp=9&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20d&cp=10&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22376%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%2Cig%3A679924C54A63439D97B795D4CE6A2DE5%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533452%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A10%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533687%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533708%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20do&cp=11&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20dow&cp=12&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A11%2C%20%5C%22GL%5C%22%3A6%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533709%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533759%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A12%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22679924C54A63439D97B795D4CE6A2DE5%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533778%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22429%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A2%2Cig%3AC4D668808A704E2ABEC74F372F580595%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533785%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533810%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20do%2Ci%3A3%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20down&cp=13&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A3%2Cig%3A61880C7B1B634972A1DE6226615F9066%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533829%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%22%2C%22AsResponseLength%22%3A%22419%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20dow%2Ci%3A4%2Cig%3AD8318348B6AF4ACD8BEF00FB0384E21B%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533879%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A13%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22D8318348B6AF4ACD8BEF00FB0384E21B%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202533910%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%22%2C%22AsResponseLength%22%3A%22421%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20down%2Ci%3A5%2Cig%3A0F0E5BA47F964F26B6B3BCFC33506C5E%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202533975%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downl&cp=14&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downlo&cp=15&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A14%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220F0E5BA47F964F26B6B3BCFC33506C5E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534161%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534194%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%22%2C%22AsResponseLength%22%3A%22426%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downl%2Ci%3A6%2Cig%3A05E3FEFD464040EAA666F4652EF00B13%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534258%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A15%2C%20%5C%22GL%5C%22%3A2%2C%20%5C%22IG%5C%22%3A%5C%2205E3FEFD464040EAA666F4652EF00B13%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534279%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534308%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20downloa&cp=16&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=wannacry&mkt=en-gb&qry=wannacry%20download&cp=17&csr=1&msbqf=false&pths=1&cvid=5FF1A294070E4343AB61F805E0E049E5

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5FF1A294070E4343AB61F805E0E049E5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%22%2C%22AsResponseLength%22%3A%22425%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downlo%2Ci%3A7%2Cig%3A6E5FE9C53C8C4F87B64968EB4AC80BB2%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534382%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A16%2C%20%5C%22GL%5C%22%3A1%2C%20%5C%22IG%5C%22%3A%5C%226E5FE9C53C8C4F87B64968EB4AC80BB2%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1731202534414%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534428%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22420%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20downloa%2Ci%3A8%2Cig%3A35CB4CF24F924B4FBD3B54ADD1C85E91%22%2C%22AnswerInfo%22%3A%22LS%3B17%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1731202534487%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1731202534634%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Awannacry%20download%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1731202534662%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:18,%22BC%22:292,%22SE%22:-1,%22TC%22:-1,%22H%22:330,%22BP%22:359,%22CT%22:361,%22IL%22:8},%22ad%22:[-1,-1,1263,609,1263,4398,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%225.1%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202535233%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A433%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535239%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535240%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535244%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.J9EM7WCo2Pm6ijrc4rhPDwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Download+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Ransomware+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Virus+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=Petya+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Wanna+Cry+Download+Windows&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.360b16ff-5978-40e3-9c67-ff327e5ca418&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.7-K9p1J5229HSjdnoWSwsgHaDt&w=80&h=80&c=1&vt=10&bgcl=45d37b&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.6a36cf07-50c2-47e6-b3fc-116e13fbb522&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.35a3ca70-3ef3-43e8-a326-5609b3e92ce9&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.SZtw-kinzO-J9_yBstv7awHaJZ&w=80&h=80&c=1&vt=10&bgcl=4524fb&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.c7d54ab5-176a-431d-ab18-1bfc7ead56b3&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.112859d1-6d69-4703-8442-728a546ab4f4&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=CB30D7EB8D1C4C4085509D3ABD42FE95&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=CB30D7EB8D1C4C4085509D3ABD42FE95

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535249%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535252%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300de7779e4d48acdccfa354c177d5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202535469%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22Time%22%3A753%2C%22time%22%3A755%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A755%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535478%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A756%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202535479%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&IID=SERP.5064&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202535487%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535505%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202535628%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535689%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202535700%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=OVP.ekQWSDFiQU1NFa6T_RXlIgHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.skUCRr6MbuOZu_nO8StXIAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.eq6IvB1OchM55kZ53gzG7QHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.TmMOyRWQzTpuHVd8Ayz-GwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODL.032549a578d2ec61f9e3386bc626d011&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535703%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535704%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%223%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22531%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22984%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202535707%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202535786%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/sa/51195484/Blue/BlueIdentityDropdownRedirect_c.js

HTTP Request

GET https://www.bing.com/sa/51195484/Blue/HamburgerServicesHeaderFlyout_c.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/hamburger/scfo?ver=51195484&q=wannacry+download&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=wannacry+downloa&sc=10-16&sk=&cvid=5FF1A294070E4343AB61F805E0E049E5&ghsh=0&ghacc=0&ghpl=&IID=SERP.5067&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D

HTTP Request

GET https://www.bing.com/Identity/Dropdown?n=1&IID=SERP.5068&IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dwannacry%2Bdownload%26qs%3Dn%26form%3DQBRE%26sp%3D-1%26ghc%3D1%26lq%3D0%26pq%3Dwannacry%2Bdownloa%26sc%3D10-16%26sk%3D%26cvid%3D5FF1A294070E4343AB61F805E0E049E5%26ghsh%3D0%26ghacc%3D0%26ghpl%3D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/MnHJON9xUYXpg-poLvycfocMWOA.svg

HTTP Request

GET https://www.bing.com/rp/9roWR2D5ePtJMzD9tbaESvO2JXw.png

HTTP Request

GET https://www.bing.com/rp/R8ErSC7kK_3o4eRM-pP2JlReVkE.png

HTTP Request

GET https://www.bing.com/rp/1bS66LcKydbjw6xnNUaVfMtxlhg.png

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=CB30D7EB8D1C4C4085509D3ABD42FE95&ID=SERP,5214.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3De7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dwannacry%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=e7edf1b47944d4320ee39491169d2177428c78f4fdbe43552c4e73da2da07b72JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=wannacry+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL2xpbWl0ZWNpL1dhbm5hQ3J5&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=16a76d391cc04f96981b2b670b352cc1&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=dcf1ddacba444884acf47c6f73c09fdf&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=83e0ae25c8614ed2b6efd68d0a8e6211&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=869ce2b03f4f47929acab445652c0e36&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e07e4bf1c89542a4b60852155510b896&oit=1&cp=5&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=108c664b106c464081e1fdb1e5d45c8f&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=167ca8fb39be4aaab379fbf4e9ab2ea6&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8423a4b934c847ab9f628ea43d72bbc4&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0776949589cc4c9ca2fd9dc522e04a23&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d5590049b1b54d88942a813a2404b390&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=f3e0020d371d4be19aef2578b7b63241&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e65886746df04184a2bd85c185d8bf1a&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=4267150002804e9a83ccf0beba18baa5&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7443c47eddb94ca7882b32aa1d0beae3&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watching%3F&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=c896b20df9fa4fa08cdf9edcbb4d54cd&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watching&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=36ffe3648f9e449385e2a2908889bc93&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watchin&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=053fd24708724bccb688fe4b21ecd1db&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watchi&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=7a10b47f6cc64a2e8b4116aa4c69db27&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watch&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=ffb018559a134e32bb4aeeaf8844f695&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+watc&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=0e8d34f671c84cd9bf1116695ef1fa17&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+wat&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=e9ca5f454c3f40a5a82a038d86fc3538&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+wa&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8c11ba5da9ee4dccbdf6cc924542f792&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+w&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=99e4f86f1e9f4f66bfe2a58f5d958f77&oit=4&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall+&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=d2554ef7777346889bcd573b522a5bb6&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yall&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=903246c17bba4160b5d0104a53b423df&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=yal&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=b04df29890e14bd1811edee0575b90e5&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=ya&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=8344510e3cd5464381230ecc2aa8198e&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=y&language=en-US&pt=EdgBox&cvid=0ced9e608a8f4d859c094eb8c9b38fa2&ig=2e3a4b2b16504c689a844dc0a6053c4f&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=edbf9a47d62e4d20ba56ce85c8c826c7&oit=1&cp=1&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=f8c127aed964448f94b545577c294c50&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=9c69efb9661e4e3fa1fecf00fe3d5732&oit=1&cp=3&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=uhhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=a0db66704c9843c58e131af8d4cfb6c6&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uhh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=37610e7c69c4452da1676e1fcf98891d&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=uh&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=84a1dbb7cd024dd2aa40026472092503&oit=1&cp=2&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=u&language=en-US&pt=EdgBox&cvid=4f6c1aa7479b4b19babcb140ef6f0deb&ig=8520b6cbc918431c9845a0ad97531fad&oit=1&cp=1&pgcl=4

HTTP Response

200
92.123.128.161:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
92.123.128.133:443

r.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
92.123.128.133:443

https://r.bing.com/rp/Lx_TZsW5eK7jy9b_h2SuK-KRAjk.br.js

tls, http2

msedge.exe

24.2kB
494.1kB
337
391

HTTP Request

GET https://r.bing.com/rp/VDdfQYc6v56ozpdKB9krtilmPJU.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/RMR1gT-owPhjdj5T7QIDjVzDF_U.br.js

HTTP Request

GET https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

HTTP Request

GET https://r.bing.com/rp/xvEz2IbMlyghPZ3oNAHr9N-xMOA.br.js

HTTP Request

GET https://r.bing.com/rp/CUqtgSTS9Z8_EvkEN5_3O3AydtU.br.js

HTTP Request

GET https://r.bing.com/rp/_cQCYzUIUDtiKJi2Mubb5vkdlxs.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/OyRnaZe6gJ8kMXuak91zU0baVM4.br.js

HTTP Request

GET https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/V793ayrBYjBUm-0gdrJPAEYeUiw.br.js

HTTP Request

GET https://r.bing.com/rp/2DP4HPIfaNQ7pkpsKIkpRa3DF6Y.br.js

HTTP Request

GET https://r.bing.com/rp/121raEt8--NA5hc0p8GXzGcrGvM.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/9cuwOQ_qE7qTGKohzrf_gIjTlPI.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/awRIKLY04rWw5wNlVL186SolQSo.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/ZROPcAEhbj2oVXAWpOfdV-3E98k.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/910ptS3pcIDQ7a5acMaHuQliuN0.br.js

HTTP Request

GET https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

HTTP Request

GET https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/jA1xMqBzlpnpE2ru1-s0ybbi8MM.br.js

HTTP Request

GET https://r.bing.com/rp/hkXWsTcGTHs44QxzZyThd4fbbPM.br.js

HTTP Request

GET https://r.bing.com/rp/EcPZJcvBpS1TWE_YYG-PcTqlkRQ.br.js

HTTP Request

GET https://r.bing.com/rp/czeEPNlpDVWsmJfEnL747Yh-AxQ.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/X-RU3l-2R4Eoz9TUYWyziyccOjA.br.js

HTTP Request

GET https://r.bing.com/rp/nc60aT-MXWFDGmlflZLjNBVVxkM.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/t7vjQF3Su3ZV-EkXGBcNcV5x97o.br.js

HTTP Request

GET https://r.bing.com/rp/3NYnR9z1mfq6DmFVYK_gPtQesRM.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

HTTP Request

GET https://r.bing.com/rp/2pI-3yxS71qnL6vzhVIltDQouTg.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/WjLJz0ZZ3W6qclUa_RsS6VdZFzE.br.js

HTTP Request

GET https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

HTTP Request

GET https://r.bing.com/rp/LnZWyyNXjl-aM6CZGGI467irlEM.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

HTTP Request

GET https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/00BXM0d2_RU-uUgNDoDSRVtPaQg.br.js

HTTP Request

GET https://r.bing.com/rp/pYx84E5QxKsDa_GCjDkQj38YO0k.br.js

HTTP Request

GET https://r.bing.com/rp/7iVUkp_QNKYQoVs0zBrZVocZL9c.br.js

HTTP Request

GET https://r.bing.com/rp/y9cMttd-SwSaYuiqhqk701fxHs0.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/M3xiMRj_NI1FZuxN8qdZp2woCV8.br.js

HTTP Request

GET https://r.bing.com/rp/ehd9DVTDg25XG1HgnAeMa17fMkw.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/DUK18cY3cfD0zk-_nBEv4bFX75k.br.js

HTTP Request

GET https://r.bing.com/rp/Ivjrtaa9JhEJURQVZcs0_qKi1j0.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/lcj8996lLPHohM7LK16sWWtGSzE.br.js

HTTP Request

GET https://r.bing.com/rp/IpXJDHKzfGJAg49_x5sRfvVvsvk.br.js

HTTP Request

GET https://r.bing.com/rp/wdztorm0zepTG5y9h06J4IZsb-U.br.js

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Request

GET https://r.bing.com/rp/t5vZ9VqTO-Sl4hN969ySbvZgV0g.br.js

HTTP Request

GET https://r.bing.com/rp/cevyAKMYXDq2u5yDO1sFDbbTMgg.br.js

HTTP Request

GET https://r.bing.com/rp/PY0SrrESH_R6W9dvCF-dX40xFO4.br.js

HTTP Request

GET https://r.bing.com/rp/buUaCZ-qbYO2tqBHHU578PNjjZc.br.js

HTTP Request

GET https://r.bing.com/rp/IEsUJAq41KbrXKW7f2nmdJPCUXs.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

HTTP Request

GET https://r.bing.com/rp/Xs0bcRwli50H_9_TOsfurmNnZ64.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/uiannz55FdT0j3p9jGwegfI5aIY.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

HTTP Request

GET https://r.bing.com/rp/ydDuUFvQrnTEDpvE14Ya7abrPGk.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/WGsMK7cVtc-pBG-Z9UpxSyKSl_8.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/wYAz2GeddC4qqx1siMKL2Pip4Q0.br.js

HTTP Request

GET https://r.bing.com/rp/Lx_TZsW5eK7jy9b_h2SuK-KRAjk.br.js

HTTP Response

200

HTTP Response

200
92.123.128.161:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
198.187.29.31:443

https://bonzibuddy.org/favicon.ico

tls, http2

msedge.exe

7.1kB
162.8kB
98
143

HTTP Request

GET https://bonzibuddy.org/download.html

HTTP Response

200

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/loading.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/download.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbabilities2.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbvine.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/sepbar.jpg

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/meetyou.jpg

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbsearch.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbmail.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbdownload.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bbcalendar.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/banana24.gif

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/bonz24.gif

HTTP Response

404

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://bonzibuddy.org/favicon.ico

HTTP Response

404
198.187.29.31:443

bonzibuddy.org

tls

msedge.exe

1.1kB
5.7kB
10
9
92.123.128.161:443

th.bing.com

tls, http2

msedge.exe

1.1kB
970 B
9
9
92.123.128.146:443

https://r.bing.com/rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js

tls, http2

msedge.exe

11.3kB
207.8kB
153
192

HTTP Request

GET https://r.bing.com/rp/2r5W2sO7t8CysMYVPQe_auAQRjA.br.js

HTTP Request

GET https://r.bing.com/rp/wtzaWs32sw1oSL4IoeJ5EBdP83k.br.js

HTTP Request

GET https://r.bing.com/rp/588mCJcNGAaFB6dOlDRliug5zsc.br.js

HTTP Request

GET https://r.bing.com/rp/BMHcFIy-Zeu4GqfEnHOyABd5ZQc.br.js

HTTP Request

GET https://r.bing.com/rp/uq6jewoGavoU4pK6nYtO9pAum4o.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/n7roHZRr1mbNerR9FtbnXOskd84.br.js

HTTP Request

GET https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/bKGfvbVy5iHDG2XSTMlh56y9b8Y.br.js

HTTP Request

GET https://r.bing.com/rp/PhAsLQ7MN1I2HGiAYYV0T_5C5_8.br.js

HTTP Request

GET https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

HTTP Request

GET https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

HTTP Request

GET https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

HTTP Request

GET https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

HTTP Request

GET https://r.bing.com/rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js

HTTP Request

GET https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

HTTP Request

GET https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/0KHDNObKLC5kGksOK_SAxCU6C6A.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/yEePz6L7x2Myi9VGz4Olw9HZ1OY.br.js

HTTP Request

GET https://r.bing.com/rp/Sg2SEjOJ2EXOwmKB8pcjFgoXAe4.br.js

HTTP Request

GET https://r.bing.com/rp/RfXxODnaOKv57ZDezBRVyahhji0.br.js

HTTP Request

GET https://r.bing.com/rp/PS_P4UFz-tUSpZhOZ0ml0E9K0YM.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/NW_w0EXs3h3l9N3PeqyVuRIrqp8.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/yvUvB8qvQCN6KN5FPuoFbl2pfV8.br.js

HTTP Request

GET https://r.bing.com/rp/Yy4cH1WTygMOMDL8VywlZQbSoXQ.br.js

HTTP Request

GET https://r.bing.com/rp/spBac3V4vy6E9Xxx8Pvlb-L-Vro.br.js

HTTP Request

GET https://r.bing.com/rp/CDLORe9WY_SZjdDTSa7IgnM94kA.br.js

HTTP Request

GET https://r.bing.com/rp/hS2Ln3L7Vdr3v3b6DpLYscDrwiI.br.js

HTTP Request

GET https://r.bing.com/rp/Tkj5rlaNmn5JbAkYaigycK39aFw.br.js

HTTP Request

GET https://r.bing.com/rp/5_njacTHNI5UUdpA3bwOxQr_P0s.br.js

HTTP Request

GET https://r.bing.com/rp/z_fr5KPW2OLJ1tiXoS8gQsDpaMs.br.js

HTTP Request

GET https://r.bing.com/rp/5eR37RwSXCOmcXdOuj57I2X7Gmk.br.js

HTTP Request

GET https://r.bing.com/rp/R3ICOmvNQFzZuyFRCH0v_eobUKE.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/tm4DpuVvyn4GxWBMrshBhMC32o0.br.js

HTTP Request

GET https://r.bing.com/rp/jVtXp01siIY95gyiD5LwI6A6NQA.br.js

HTTP Request

GET https://r.bing.com/rs/6v/hN/jnc,nj/-Sz2s5N7OH1ytS3UvkSX2O_IA9Y.js?or=w

HTTP Request

GET https://r.bing.com/rs/6v/hA/jnc,nj/aUxJu_FqaOa5En563fWRr8ejkqw.js?or=w

HTTP Request

GET https://r.bing.com/rp/BiFnBkt6g28AddlNpxuNYXu0AbY.br.js

HTTP Request

GET https://r.bing.com/rp/92-FtHmSi-ViMO5dPWNJUcPKLcI.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
92.123.128.133:443

th.bing.com

tls, http2

msedge.exe

1.0kB
946 B
8
8
92.123.128.133:443

th.bing.com

tls, http2

msedge.exe

1.2kB
986 B
11
9
52.167.30.171:443

fpt.microsoft.com

tls, http2

msedge.exe

3.3kB
7.1kB
14
12
198.187.29.31:443

https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/loading.gif

tls, http2

msedge.exe

1.7kB
2.4kB
13
11

HTTP Request

GET https://bonzibuddy.org/NEW!%20-%20BonziBUDDY!_files/loading.gif

HTTP Response

404
2.19.117.143:443

https://aefd.nelreports.net/api/report?cat=bingcsp

tls, http

msedge.exe

2.6kB
6.2kB
24
21

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingcsp

HTTP Response

200

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingcsp

HTTP Response

200
198.187.29.31:80

http://bonzibuddy.org/Bonzi.zip

http

msedge.exe

731 B
1.2kB
6
4

HTTP Request

GET http://bonzibuddy.org/Bonzi.zip

HTTP Response

301
198.187.29.31:80

bonzibuddy.org

http

msedge.exe

236 B
445 B
5
5

HTTP Response

408
198.187.29.31:443

https://bonzibuddy.org/Bonzi.zip

tls, http2

msedge.exe

1.0MB
54.0MB
21566
38653

HTTP Request

GET https://bonzibuddy.org/Bonzi.zip

HTTP Response

200
92.123.128.167:443

https://www.bing.com/RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US

tls, http2

3.0kB
6.6kB
19
15

HTTP Request

POST https://www.bing.com/RelatedSearch?addfeaturesnoexpansion=relatedsearch&mkt=en-US

HTTP Response

200
23.213.251.133:443

https://cxcs.microsoft.net/api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop

tls, http2

1.4kB
7.0kB
18
14

HTTP Request

GET https://cxcs.microsoft.net/api/settings/en-US/xml/settings-tipset?release=20h1&sku=Professional&platform=desktop

HTTP Response

404
92.123.128.187:443

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

tls, http2

msedge.exe

2.8kB
8.2kB
26
28

HTTP Request

GET https://r.bing.com/rp/Si7rG3edDg-qeAnBusoaXpRP5B8.br.js

HTTP Request

GET https://r.bing.com/rp/zoS_aOkV4hUHE2F9qD-3CZV_Zwg.br.js

HTTP Request

GET https://r.bing.com/rp/_eFpTgargBl_KoCm3Lhq0ZQSmpI.br.js

HTTP Request

GET https://r.bing.com/rp/4h6MwFvskpsuWSAT9LJAV4odEog.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

HTTP Response

200

HTTP Response

200
92.123.128.149:443

th.bing.com

tls, http2

msedge.exe

1.1kB
946 B
8
8
13.107.21.237:443

https://rewards.bing.com/widget/telemetry

tls, http2

msedge.exe

3.4kB
10.2kB
17
23

HTTP Request

OPTIONS https://rewards.bing.com/widget/telemetry

HTTP Response

204

HTTP Request

POST https://rewards.bing.com/widget/telemetry

HTTP Response

200
150.171.28.10:443

https://tse1.mm.bing.net/th?&id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

tls, http2

msedge.exe

2.5kB
13.5kB
18
22

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.DHcEj7DS7BgFXP0s_6uEPgHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200
92.123.128.149:443

th.bing.com

tls, http2

msedge.exe

1.1kB
930 B
8
8
20.26.156.215:443

https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

tls, http2

msedge.exe

8.4kB
204.7kB
114
183

HTTP Request

GET https://github.com/limiteci/WannaCry

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/sponsor_button

HTTP Request

GET https://github.com/limiteci/WannaCry/security/overall-count

HTTP Request

GET https://github.com/limiteci/WannaCry/hovercards/citation/sidebar_partial?tree_name=main

HTTP Request

GET https://github.com/limiteci/WannaCry/sponsors_list?block_button=false&current_repository=WannaCry

HTTP Request

GET https://github.com/limiteci/WannaCry/used_by_list

HTTP Request

GET https://github.com/limiteci/WannaCry/latest-commit/main

HTTP Request

GET https://github.com/limiteci/WannaCry/refs?type=branch

HTTP Request

GET https://github.com/limiteci/WannaCry/tree-commit-info/main

HTTP Request

GET https://github.com/limiteci/WannaCry/overview-files/main

HTTP Request

GET https://github.com/limiteci/WannaCry/branch-and-tag-count

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/funding_links?fragment=1

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry?tab=readme-ov-file

HTTP Response

200

HTTP Request

GET https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/blob/main/WannaCry.EXE?raw=true

HTTP Response

302

HTTP Request

GET https://github.com/limiteci/WannaCry/raw/refs/heads/main/WannaCry.EXE

HTTP Response

302
140.82.112.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

14.5kB
10.2kB
43
40

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

6.8kB
10.3kB
32
36

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
185.15.59.224:443

en.wikipedia.org

tls

msedge.exe

1.0kB
4.7kB
10
8
185.15.59.224:443

https://en.wikipedia.org/w/load.php?lang=en&modules=skins.vector.search.codex.scripts%7Cvue&skin=vector-2022&version=1czqo

tls, http2

msedge.exe

20.6kB
520.1kB
337
390

HTTP Request

GET https://en.wikipedia.org/wiki/WannaCry_ransomware_attack

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.styles%7Cext.uls.interlanguage%7Cext.visualEditor.desktopArticleTarget.noscript%7Cext.wikimediaBadges%7Cext.wikimediamessages.styles%7Cjquery.makeCollapsible.styles%7Cskins.vector.icons%2Cstyles%7Cskins.vector.search.codex.styles%7Cwikibase.client.init&only=styles&skin=vector-2022

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=startup&only=scripts&raw=1&skin=vector-2022

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=site.styles&only=styles&skin=vector-2022

HTTP Request

GET https://en.wikipedia.org/static/images/icons/wikipedia.png

HTTP Request

GET https://en.wikipedia.org/static/images/mobile/copyright/wikipedia-wordmark-en.svg

HTTP Request

GET https://en.wikipedia.org/static/images/mobile/copyright/wikipedia-tagline-en.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=menu&format=original&lang=en&skin=vector-2022&version=5rirp

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=ellipsis&format=original&lang=en&skin=vector-2022&version=5rirp

HTTP Request

GET https://en.wikipedia.org/w/load.php?modules=skins.vector.icons&image=language&variant=progressive&format=original&lang=en&skin=vector-2022&version=5rirp

HTTP Request

GET https://en.wikipedia.org/w/skins/Vector/resources/skins.vector.styles/images/link-external-small-ltr-progressive.svg?fb64d

HTTP Request

GET https://en.wikipedia.org/w/resources/src/mediawiki.skinning/images/magnify-clip-ltr.svg?8330e

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=ext.gadget.ReferenceTooltips%2Cswitcher&skin=vector-2022&version=rqy9n

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=ext.visualEditor.core.utils.parsing%7Cext.visualEditor.desktopArticleTarget.init%7Cext.visualEditor.progressBarWidget%2CsupportCheck%2CtargetLoader%2CtempWikitextEditorWidget%2Ctrack%2Cve&skin=vector-2022&version=goyk7

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=ext.centralNotice.bannerHistoryLogger%2CchoiceData%2Cdisplay%2CgeoIP%2CimpressionDiet%2CkvStore%2ClargeBannerLimit%2ClegacySupport%2CstartUp%7Cext.centralauth.ForeignApi%2Ccentralautologin%7Cext.checkUser.clientHints%7Cext.cite.ux-enhancements%7Cext.cx.eventlogging.campaigns%7Cext.cx.model%7Cext.cx.uls.quick.actions%7Cext.echo.centralauth%7Cext.eventLogging%2CnavigationTiming%2Cpopups%2CwikimediaEvents%7Cext.growthExperiments.SuggestedEditSession%7Cext.uls.common%2Cinterface%2Cpreferences%2Cwebfonts%7Cext.urlShortener.toolbar%7Cjquery%2Coojs%2Csite%7Cjquery.client%2CmakeCollapsible%2CtextSelection%7Cjquery.uls.data%7Cmediawiki.ForeignApi%2CString%2CTitle%2CUri%2Capi%2Cbase%2Ccldr%2Ccookie%2Cexperiments%2CjqueryMsg%2Clanguage%2Crouter%2Cstorage%2Ctoc%2Cuser%2Cutil%2CvisibleTimeout%7Cmediawiki.ForeignApi.core%7Cmediawiki.editfont.styles%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.media%2Cready%7Cmediawiki.page.watch.ajax%7Cmmv.bootstrap%2Ccodex%7Cmw.cx.SiteMapper%7Coojs-ui.styles.icons-interactions%7Cskins.vector.clientPreferences%2Cjs%7Cskins.vector.icons.js%7Cwikibase.client.vector-2022%7Cwikibase.sidebar.tracking&skin=vector-2022&version=1jlqy

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/static/images/project-logos/enwiki.png

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=ext.cite.referencePreviews%7Cext.math.popup%7Cext.popups.main&skin=vector-2022&version=1e38y

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=mw.config.values.wbCurrentSiteDetails%2CwbRepo%7Coojs-ui.styles.icons-editing-core&skin=vector-2022&version=15dcf

HTTP Request

GET https://login.wikimedia.org/wiki/Special:CentralAutoLogin/checkLoggedIn?type=script&wikiid=enwiki

HTTP Request

GET https://en.wikipedia.org/static/favicon/wikipedia.ico

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://en.wikipedia.org/w/load.php?lang=en&modules=skins.vector.search.codex.scripts%7Cvue&skin=vector-2022&version=1czqo

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.15.59.240:443

https://upload.wikimedia.org/wikipedia/commons/a/aa/Lock-red-alt-2.svg

tls, http2

msedge.exe

4.5kB
97.7kB
60
85

HTTP Request

GET https://upload.wikimedia.org/wikipedia/en/thumb/1/18/Wana_Decrypt0r_screenshot.png/240px-Wana_Decrypt0r_screenshot.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/commons/thumb/2/20/Countries_initially_affected_in_WannaCry_ransomware_attack.svg/300px-Countries_initially_affected_in_WannaCry_ransomware_attack.svg.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/commons/thumb/1/17/Balance%2C_by_David.svg/21px-Balance%2C_by_David.svg.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/commons/thumb/f/f9/Crystal_Clear_app_linneighborhood.svg/19px-Crystal_Clear_app_linneighborhood.svg.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/en/thumb/4/4a/Commons-logo.svg/30px-Commons-logo.svg.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/commons/4/4d/Icon_pdf_file.png

HTTP Request

GET https://upload.wikimedia.org/wikipedia/commons/a/aa/Lock-red-alt-2.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.15.59.240:443

upload.wikimedia.org

tls

msedge.exe

1.0kB
4.8kB
10
8
185.15.59.240:443

upload.wikimedia.org

tls

msedge.exe

885 B
4.1kB
8
5
185.15.59.240:443

upload.wikimedia.org

tls

msedge.exe

885 B
4.1kB
8
5
185.15.59.240:443

upload.wikimedia.org

tls

msedge.exe

885 B
4.1kB
8
5
185.15.59.240:443

upload.wikimedia.org

msedge.exe

98 B
52 B
2
1
185.199.110.133:443

https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

tls, http2

msedge.exe

4.3kB
63.4kB
55
58

HTTP Request

OPTIONS https://raw.githubusercontent.com/limiteci/WannaCry/refs/heads/main/WannaCry.EXE

HTTP Response

403
127.0.0.1:9050

@WanaDecryptor@.exe
127.0.0.1:61051

taskhsvc.exe
62.102.148.67:443

taskhsvc.exe

260 B
5
194.109.206.212:443

taskhsvc.exe

260 B
5
192.160.102.164:9001

taskhsvc.exe

260 B
5
136.243.214.137:443

taskhsvc.exe

260 B
5
193.23.244.244:443

www.welld5dx6q2xwedy.com

tls

taskhsvc.exe

54.4kB
798.5kB
515
585
127.0.0.1:9050

@WanaDecryptor@.exe
127.0.0.1:9050

@WanaDecryptor@.exe
95.217.227.227:443

www.gtejal.com

tls

taskhsvc.exe

935.2kB
5.6MB
4279
4274
127.0.0.1:9050

@WanaDecryptor@.exe
127.0.0.1:9050

@WanaDecryptor@.exe
127.0.0.1:9050

@WanaDecryptor@.exe
178.63.40.99:9090

www.neewgvqo75ppgztyi.com

tls

taskhsvc.exe

1.2kB
3.4kB
7
7
95.217.227.227:443

www.423fykgujgdio6t2.com

tls

taskhsvc.exe

267.2kB
2.2MB
1371
1631
92.123.128.181:443

www.bing.com

tls, http2

msedge.exe

1.3kB
6.6kB
14
13
92.123.128.181:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

102.2kB
280.8kB
337
360

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+i&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f01c57ac0165469ab9bab6b1e8a13855&oit=4&cp=12&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+id&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fa83651f5cd74f8ab210484b8f58b428&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idi&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5fb1064d49a04e1481d7507b2a32a2d9&oit=4&cp=14&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idio&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=d21a6bdf787442ebb8dab19b65283aad&oit=4&cp=15&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=4118e89f7b1d4fe78466a1d5f7f85c27&oit=4&cp=16&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=8f94c38011f5469b816865d411babc20&oit=4&cp=17&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.e&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=f2f69b9e13f3482187485bfd9f7e9297&oit=4&cp=18&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.ex&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=32bcd040d14f4fa7bad511f4e8f8f996&oit=4&cp=19&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=3fd9012cdfb94250af5c1c6a278f1691&oit=4&cp=20&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7e87978732bb4550b3d1bad6954969f0&oit=4&cp=21&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+dow&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=ad71871a8ba948dcbe11f88b562b1d59&oit=4&cp=24&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+down&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=5db15aed135f43cc92c9206e0ba18713&oit=4&cp=25&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+downl&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=9c3d275f0394431b8d905cad44540a3d&oit=4&cp=26&pgcl=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+downlo&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=7cad49a6d0164ad7a4a3c04de34be8f4&oit=4&cp=27&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+downloa&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=1793d383bb73488b84c4690cb02fa8fe&oit=4&cp=28&pgcl=4

HTTP Request

GET https://www.bing.com/qbox?query=you+are+an+idiot.exe+download&language=en-US&pt=EdgBox&cvid=e6baedb292d74c2981a700fcfb5719a1&ig=fb778c19d2d34b77afb6bf30a9adbdb3&oit=4&cp=29&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:16,%22BC%22:310,%22SE%22:-1,%22TC%22:-1,%22H%22:666,%22BP%22:670,%22CT%22:674,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,3929,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%2250%22%2C%22Downlink%22%3A%227.05%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1731202845516%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A1041%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845521%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845524%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2229%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=7FB282773276439892D8B68B9545F5D2&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845526%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1703%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845801%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1707%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1731202845802%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51195484&IID=SERP.5055&IG=7FB282773276439892D8B68B9545F5D2

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=7FB282773276439892D8B68B9545F5D2&IID=SERP.5064&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267300f1d0a7b4c7aa1c8749f4bac697b%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1731202845805%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1731202845829%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202845836%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845918%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22wikiWidget%22%7D%2C%7B%22SuppressingFeature%22%3A%22wikiWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1731202845968%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846005%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2211%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1731202846019%2C%22Name%22%3A%22notebook%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202846022%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=3D06F3BEC48862CA11CEE68DC5B96311&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?q=You+Are+an+Udiot+exe+SOG&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=OVP.tJs2c0jzvdJaE8CaV9D8jgHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Youareanidiot+Link&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=You+Are+an+Idoit.org&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=OMG+exe+Download+Free&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Youareanidiot.org+Download&w=34&h=34&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%224%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221432%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221948%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1731202846042%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialInvalidFrequency%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1731202848235%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1731202848439%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://th.bing.com/th?id=ODLS.770677f0-81cd-46e1-b54f-6f6a4c116153&w=16&h=16&c=7&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c8d2b234-7443-492f-82c5-c237f39e5300&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.87bmSPfzwPuOvwNamcY8wwEsDh&w=216&h=120&c=7&bgcl=21d5b9&r=0&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?id=OVP.wc_AHzlggyZrlLzQIo2fnQHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.sb3rvyhZ6TgS2tUzPfgoYwHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.rZ0TfUTXVOeh1sGKwK2UHAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.7ADEyp1AKVuM8eIZbYfxQQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/Identity/Dropdown?n=1&IID=SERP.5068&IG=7FB282773276439892D8B68B9545F5D2&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531

HTTP Request

GET https://www.bing.com/hamburger/scfo?ver=51195484&q=you+are+an+idiot.exe+download&cvid=e6baedb292d74c2981a700fcfb5719a1&aqs=edge..69i57j0l6.7865j0j4&FORM=ANAB01&PC=U531&IID=SERP.5067&IG=7FB282773276439892D8B68B9545F5D2&fbnb=1&ru=https%3A%2F%2Fwww.bing.com%2Fsearch%3Fq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26cvid%3De6baedb292d74c2981a700fcfb5719a1%26aqs%3Dedge..69i57j0l6.7865j0j4%26FORM%3DANAB01%26PC%3DU531

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22hb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=7FB282773276439892D8B68B9545F5D2&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SRTH%22,%22FID%22:%22CI%22,%22Name%22:%22SRTHVS%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=7FB282773276439892D8B68B9545F5D2&ID=SERP,5213.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Dde3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D306d1e91-b57d-6ccc-1a30-0ba2b44c6d74%26psq%3Dyou%2Bare%2Ban%2Bidiot.exe%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90%26ntb%3D1

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=de3e6419e3b43d34692b57fd7b09738e22c454df3d03aba31ae1f1e5fb466b14JmltdHM9MTczMTExMDQwMA&ptn=3&ver=2&hsh=4&fclid=306d1e91-b57d-6ccc-1a30-0ba2b44c6d74&psq=you+are+an+idiot.exe+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0hhY2tlclNpbmhvcy9Zb3UtQXJlLUFuLUlkaW90&ntb=1

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204
92.123.128.181:443

www.bing.com

tls, http2

msedge.exe

1.1kB
5.2kB
12
12
92.123.128.181:443

www.bing.com

tls, http2

msedge.exe

1.2kB
5.5kB
13
13
92.123.128.181:443

www.bing.com

tls

msedge.exe

1.1kB
827 B
9
6
92.123.128.181:443

www.bing.com

tls, http2

msedge.exe

1.1kB
5.1kB
11
11
127.0.0.1:9050

@WanaDecryptor@.exe
92.123.128.149:443

r.bing.com

tls, http2

msedge.exe

1.3kB
1.3kB
11
10
92.123.128.149:443

r.bing.com

tls, http2

msedge.exe

1.3kB
1.3kB
12
10
92.123.128.149:443

th.bing.com

tls, http2

msedge.exe

1.3kB
1.3kB
12
10
65.21.172.94:447

www.dqnmi534qgg4d4iuonp6zqm.com

tls

taskhsvc.exe

1.4kB
3.4kB
8
7
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

842 B
625 B
5
4
20.26.156.215:443

https://github.com/HackerSinhos/You-Are-An-Idiot/branch-and-tag-count

tls, http2

msedge.exe

5.8kB
95.7kB
57
82

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot

HTTP Response

200

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/security/overall-count

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/hovercards/citation/sidebar_partial?tree_name=main

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/used_by_list

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/latest-commit/main

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/refs?type=branch

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/tree-commit-info/main

HTTP Request

GET https://github.com/HackerSinhos/You-Are-An-Idiot/branch-and-tag-count

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200
140.82.114.22:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

10.8kB
8.1kB
27
17

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

2.9kB
6.4kB
16
17

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
95.217.227.227:443

www.km5etqdfbtlie.com

tls

taskhsvc.exe

27.4kB
139.2kB
102
111

8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

avatars.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.109.133

185.199.108.133

185.199.111.133

185.199.110.133
8.8.8.8:53

github.githubassets.com

dns

msedge.exe

69 B
133 B
1
1

DNS Request

github.githubassets.com

DNS Response

185.199.110.154

185.199.108.154

185.199.109.154

185.199.111.154
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

3.5.27.107

52.217.115.17

3.5.27.84

52.216.246.12

3.5.28.85

54.231.235.161

3.5.23.250

3.5.25.81
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

79 B
143 B
1
1

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.111.133

185.199.108.133

185.199.110.133

185.199.109.133
8.8.8.8:53

28.118.140.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

28.118.140.52.in-addr.arpa
8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

215.156.26.20.in-addr.arpa
8.8.8.8:53

140.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

140.32.126.40.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
8.8.8.8:53

collector.github.com

dns

msedge.exe

66 B
115 B
1
1

DNS Request

collector.github.com

DNS Response

140.82.112.22
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

133.109.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.109.199.185.in-addr.arpa
8.8.8.8:53

154.110.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

154.110.199.185.in-addr.arpa
8.8.8.8:53

210.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

210.156.26.20.in-addr.arpa
8.8.8.8:53

22.112.82.140.in-addr.arpa

dns

72 B
117 B
1
1

DNS Request

22.112.82.140.in-addr.arpa
224.0.0.251:5353

564 B
9
8.8.8.8:53

232.168.11.51.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

232.168.11.51.in-addr.arpa
8.8.8.8:53

53.210.109.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

53.210.109.20.in-addr.arpa
8.8.8.8:53

198.187.3.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

198.187.3.20.in-addr.arpa
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

objects.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

objects.githubusercontent.com

DNS Response

185.199.108.133

185.199.109.133

185.199.111.133

185.199.110.133
8.8.8.8:53

149.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

149.128.123.92.in-addr.arpa
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
284 B
1
1

DNS Request

r.bing.com

DNS Response

92.123.128.133

92.123.128.149

92.123.128.181

92.123.128.169

92.123.128.161

92.123.128.167

92.123.128.146
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
318 B
1
1

DNS Request

th.bing.com

DNS Response

92.123.128.161

92.123.128.149

92.123.128.181

92.123.128.169

92.123.128.146

92.123.128.167

92.123.128.194

92.123.128.164

92.123.128.133
8.8.8.8:53

mashable.com

dns

msedge.exe

58 B
90 B
1
1

DNS Request

mashable.com

DNS Response

172.64.145.239

104.18.42.17
8.8.8.8:53

login.microsoftonline.com

dns

msedge.exe

71 B
314 B
1
1

DNS Request

login.microsoftonline.com

DNS Response

40.126.32.140

40.126.32.72

20.190.160.20

20.190.160.17

40.126.32.138

40.126.32.134

40.126.32.68

40.126.32.133
8.8.8.8:53

161.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

161.128.123.92.in-addr.arpa
8.8.8.8:53

133.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

133.128.123.92.in-addr.arpa
8.8.8.8:53

76.32.126.40.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

76.32.126.40.in-addr.arpa
8.8.8.8:53

237.21.107.13.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

237.21.107.13.in-addr.arpa
8.8.8.8:53

bonzibuddy.org

dns

msedge.exe

60 B
76 B
1
1

DNS Request

bonzibuddy.org

DNS Response

198.187.29.31
8.8.8.8:53

31.29.187.198.in-addr.arpa

dns

72 B
113 B
1
1

DNS Request

31.29.187.198.in-addr.arpa
8.8.8.8:53

11.227.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

11.227.111.52.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
302 B
1
1

DNS Request

th.bing.com

DNS Response

92.123.128.133

92.123.128.146

92.123.128.169

92.123.128.167

92.123.128.164

92.123.128.161

92.123.128.181

92.123.128.149
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
300 B
1
1

DNS Request

r.bing.com

DNS Response

92.123.128.146

92.123.128.161

92.123.128.164

92.123.128.149

92.123.128.133

92.123.128.167

92.123.128.181

92.123.128.169
8.8.8.8:53

146.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

146.128.123.92.in-addr.arpa
8.8.8.8:53

fpt.microsoft.com

dns

msedge.exe

63 B
182 B
1
1

DNS Request

fpt.microsoft.com

DNS Response

52.167.30.171
8.8.8.8:53

171.30.167.52.in-addr.arpa

dns

144 B
146 B
2
1

DNS Request

171.30.167.52.in-addr.arpa

DNS Request

171.30.167.52.in-addr.arpa
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

2.19.117.143

2.19.117.148
8.8.8.8:53

143.117.19.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

143.117.19.2.in-addr.arpa
8.8.8.8:53

214.143.182.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

214.143.182.52.in-addr.arpa
2.19.117.143:443

aefd.nelreports.net

https

msedge.exe

2.0kB
5.2kB
9
11
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

65 B
174 B
1
1

DNS Request

aefd.nelreports.net

DNS Response

2.19.117.148

2.19.117.143
2.19.117.148:443

aefd.nelreports.net

https

msedge.exe

3.2kB
2.5kB
6
9
8.8.8.8:53

148.117.19.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

148.117.19.2.in-addr.arpa
8.8.8.8:53

cxcs.microsoft.net

dns

64 B
154 B
1
1

DNS Request

cxcs.microsoft.net

DNS Response

23.213.251.133
8.8.8.8:53

133.251.213.23.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

133.251.213.23.in-addr.arpa
8.8.8.8:53

167.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

167.128.123.92.in-addr.arpa
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
316 B
1
1

DNS Request

r.bing.com

DNS Response

92.123.128.187

92.123.128.169

92.123.128.161

92.123.128.167

92.123.128.181

92.123.128.149

92.123.128.194

92.123.128.146

92.123.128.133
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
302 B
1
1

DNS Request

th.bing.com

DNS Response

92.123.128.149

92.123.128.161

92.123.128.146

92.123.128.167

92.123.128.169

92.123.128.133

92.123.128.187

92.123.128.181
8.8.8.8:53

rewards.bing.com

dns

msedge.exe

62 B
163 B
1
1

DNS Request

rewards.bing.com

DNS Response

13.107.21.237

204.79.197.237
8.8.8.8:53

187.128.123.92.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

187.128.123.92.in-addr.arpa
8.8.8.8:53

tse1.mm.bing.net

dns

msedge.exe

62 B
170 B
1
1

DNS Request

tse1.mm.bing.net

DNS Response

150.171.28.10

150.171.27.10
2.19.117.148:443

aefd.nelreports.net

https

msedge.exe

3.3kB
2.5kB
7
9
8.8.8.8:53

github.com

dns

msedge.exe

112 B
72 B
2
1

DNS Request

github.com

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

79 B
143 B
1
1

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.111.133

185.199.110.133

185.199.109.133

185.199.108.133
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

150 B
506 B
2
2

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.226.241

3.5.28.176

52.216.240.132

52.217.121.169

3.5.27.211

3.5.28.89

16.15.179.15

3.5.28.179

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.137.129

52.217.118.81

52.216.54.169

3.5.30.145

16.182.74.185

16.182.100.169

3.5.27.22

3.5.25.252
8.8.8.8:53

camo.githubusercontent.com

dns

msedge.exe

72 B
136 B
1
1

DNS Request

camo.githubusercontent.com

DNS Response

185.199.111.133

185.199.108.133

185.199.109.133

185.199.110.133
8.8.8.8:53

collector.github.com

dns

msedge.exe

66 B
115 B
1
1

DNS Request

collector.github.com

DNS Response

140.82.112.22
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

en.wikipedia.org

dns

msedge.exe

124 B
214 B
2
2

DNS Request

en.wikipedia.org

DNS Request

en.wikipedia.org

DNS Response

185.15.59.224

DNS Response

185.15.59.224
8.8.8.8:53

upload.wikimedia.org

dns

msedge.exe

66 B
82 B
1
1

DNS Request

upload.wikimedia.org

DNS Response

185.15.59.240
8.8.8.8:53

meta.wikimedia.org

dns

msedge.exe

64 B
99 B
1
1

DNS Request

meta.wikimedia.org

DNS Response

185.15.59.224
8.8.8.8:53

login.wikimedia.org

dns

msedge.exe

65 B
100 B
1
1

DNS Request

login.wikimedia.org

DNS Response

185.15.59.224
8.8.8.8:53

224.59.15.185.in-addr.arpa

dns

72 B
113 B
1
1

DNS Request

224.59.15.185.in-addr.arpa
8.8.8.8:53

240.59.15.185.in-addr.arpa

dns

72 B
115 B
1
1

DNS Request

240.59.15.185.in-addr.arpa
8.8.8.8:53

raw.githubusercontent.com

dns

msedge.exe

71 B
135 B
1
1

DNS Request

raw.githubusercontent.com

DNS Response

185.199.110.133

185.199.109.133

185.199.108.133

185.199.111.133
8.8.8.8:53

133.110.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.110.199.185.in-addr.arpa
8.8.8.8:53

244.244.23.193.in-addr.arpa

dns

146 B
216 B
2
2

DNS Request

244.244.23.193.in-addr.arpa

DNS Request

244.244.23.193.in-addr.arpa
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

195 B
174 B
3
1

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

2.19.117.143

2.19.117.148
2.19.117.143:443

aefd.nelreports.net

https

msedge.exe

2.0kB
2.5kB
6
9
8.8.8.8:53

227.227.217.95.in-addr.arpa

dns

146 B
131 B
2
1

DNS Request

227.227.217.95.in-addr.arpa

DNS Request

227.227.217.95.in-addr.arpa
8.8.8.8:53

99.40.63.178.in-addr.arpa

dns

142 B
254 B
2
2

DNS Request

99.40.63.178.in-addr.arpa

DNS Request

99.40.63.178.in-addr.arpa
8.8.8.8:53

181.128.123.92.in-addr.arpa

dns

146 B
278 B
2
2

DNS Request

181.128.123.92.in-addr.arpa

DNS Request

181.128.123.92.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

228 B
286 B
4
1

DNS Request

th.bing.com

DNS Request

th.bing.com

DNS Request

th.bing.com

DNS Request

th.bing.com

DNS Response

92.123.128.149

92.123.128.146

92.123.128.167

92.123.128.161

92.123.128.181

92.123.128.133

92.123.128.169
8.8.8.8:53

r.bing.com

dns

msedge.exe

224 B
284 B
4
1

DNS Request

r.bing.com

DNS Request

r.bing.com

DNS Request

r.bing.com

DNS Request

r.bing.com

DNS Response

92.123.128.149

92.123.128.169

92.123.128.181

92.123.128.146

92.123.128.167

92.123.128.161

92.123.128.133
8.8.8.8:53

archive.org

dns

msedge.exe

114 B
73 B
2
1

DNS Request

archive.org

DNS Request

archive.org

DNS Response

207.241.224.2
8.8.8.8:53

94.172.21.65.in-addr.arpa

dns

142 B
254 B
2
2

DNS Request

94.172.21.65.in-addr.arpa

DNS Request

94.172.21.65.in-addr.arpa
8.8.8.8:53

github.com

dns

msedge.exe

112 B
72 B
2
1

DNS Request

github.com

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

150 B
253 B
2
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.234.57

3.5.27.196

52.216.211.1

52.217.133.65

3.5.27.156

3.5.2.87

54.231.236.1

52.217.136.225

DNS Request

github-cloud.s3.amazonaws.com
8.8.8.8:53

collector.github.com

dns

msedge.exe

66 B
115 B
1
1

DNS Request

collector.github.com

DNS Response

140.82.114.22
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

22.114.82.140.in-addr.arpa

dns

72 B
117 B
1
1

DNS Request

22.114.82.140.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Windows Management Instrumentation

T1047

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

File and Directory Permissions Modification

T1222

Windows File and Directory Permissions Modification

T1222.001

Hide Artifacts

T1564

Hidden Files and Directories

T1564.001

Indicator Removal

T1070

File Deletion

T1070.004

Modify Registry

T1112

Credential Access

Credentials from Password Stores

T1555

Credentials from Web Browsers

T1555.003

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Web Service

T1102

Exfiltration

Impact

Defacement

T1491

Inhibit System Recovery

T1490

Replay Monitor

Loading Replay Monitor...

Downloads

C:\ProgramData\Adobe\Setup\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}\@WanaDecryptor@.exe.lnk

Filesize
585B

MD5
45ca371e00f06e23993a363a39e67689

SHA1
5641b2bfeaeb20c72cc12757c6fd216bd604c59d

SHA256
30d1de5afc6de764a6aea2a093a3c3723db1155631060be9882d156ba7a868e2

SHA512
6dcd53f77f964577bfbaab2608b0ccb8d15a674b943e8315bd2d59fcc547b8e6b902ccca2bfd95ff825d8a59d6210524cb1f658a3ca03e2746201a4f57b886c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
85ba073d7015b6ce7da19235a275f6da

SHA1
a23c8c2125e45a0788bac14423ae1f3eab92cf00

SHA256
5ad04b8c19bf43b550ad725202f79086168ecccabe791100fba203d9aa27e617

SHA512
eb4fd72d7030ea1a25af2b59769b671a5760735fb95d18145f036a8d9e6f42c903b34a7e606046c740c644fab0bb9f5b7335c1869b098f121579e71f10f5a9c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
7de1bbdc1f9cf1a58ae1de4951ce8cb9

SHA1
010da169e15457c25bd80ef02d76a940c1210301

SHA256
6e390bbc0d03a652516705775e8e9a7b7936312a8a5bea407f9d7d9fa99d957e

SHA512
e4a33f2128883e71ab41e803e8b55d0ac17cbc51be3bde42bed157df24f10f34ad264f74ef3254dbe30d253aca03158fde21518c2b78aaa05dae8308b1c5f30c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\017bec46-de41-4e92-bb92-1c2b6acfe5b4.tmp

Filesize
7KB

MD5
d6c30a3ec3a52f57464b5cf579f67021

SHA1
30cb2d123204bb5a8f76ffffdbe33fb6ff3f09dc

SHA256
7a409717ddba193e3d2941947a6a7014685f87d41ca5db57577d03f0082f7527

SHA512
7506851573e6950b0e1478cb50785422a42886b75628f77df41464620500751d14f509b218c2c566260a846c2e77226183d5c292f969f9d330dd79b023858ae5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
37KB

MD5
908677684413f5278249c1b08127d6a0

SHA1
df54a142c7eb47537509a54a8519f1c6c82d0965

SHA256
49910739da15aef97cf1b1fab8a1c6817991542d296c3fe6619248258626330b

SHA512
d6458614c8cf209da33129d5672f4eee9923bb56e91692c87a0f82a0e00c0ed0c03bad913e3ebfae7dab32f76465e58289e15e579bc5f8af37845ab250301773

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
38KB

MD5
084a7c45c750134bc52120929e4adfa2

SHA1
7caa207a66cb97095da77cb26bc03c05e3e3e3ef

SHA256
d897e13540624694573d596496a442f317069973a8bd8f9464b2ee91406fb990

SHA512
6aac3796f0435096a86e81ef9bdcd0186ecf74d35a38dbcd9d5c08662fe707c50d015453bf7eef1cbdbade8fca2779aded56bf3a2407a5ae97fb2a6eb1092f2f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
20KB

MD5
4e786ef6de6d058a7ee21d714b5878f8

SHA1
a25cf3a4ef2c4208064a295fc00bf84be1557e8d

SHA256
fd7a0097dcdb4360e99e3131665aaf1cdddb65f638323d8dcd86832ac1c65b57

SHA512
79f32a2fe5204c324bcdfd5b11b3d7423cb8961e61350ef8b1a40390212bb1f2125be11aa9a8761edb2fd4c760a39c9f18394a8bd8bc55148ff2937b4ea67bac

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
20KB

MD5
dc1fead1a573751765cafd211836ba29

SHA1
1d94ba0be07f3e81518fb5be569ea00e3b6cbc25

SHA256
991d3d799a919cbac9895ac58d8a6e62ef3173f78f2e0a9bb5b92578cbb8f8ed

SHA512
b12e15e781cab71469d6960e7a2760ab6b376a260533fbbb7d761c827659b1d3e2838754e42fcbdebbe6ee92ff0714bfd61d24004f8a57af8885a0be6e774898

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
18KB

MD5
2e23d6e099f830cf0b14356b3c3443ce

SHA1
027db4ff48118566db039d6b5f574a8ac73002bc

SHA256
7238196a5bf79e1b83cacb9ed4a82bf40b32cd789c30ef790e4eac0bbf438885

SHA512
165b1de091bfe0dd9deff0f8a3968268113d95edc9fd7a8081b525e0910f4442cfb3b4f5ac58ecfa41991d9dcabe5aa8b69f7f1c77e202cd17dd774931662717

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
17KB

MD5
aa9d4b0371cd9ae330d7b131493f54c5

SHA1
e83c2b6b6f023a6e00d18f0c9ed6b8ae9bab1459

SHA256
1ffe9b8b344a25a19f33e5900aadb00e53b8bf1a22210ab66c7b50bbcbea45a1

SHA512
337e27650c4b534683c8589dc4787eb9bcfecae020bcb1a507a1530b1fd7562ba8d185157e8af23b06e80cc70136f51bbc0fc0ac63e581e34e410c6d08d398e1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

Filesize
18KB

MD5
551ec1ab5799476429ed57184a6e0502

SHA1
7bcf188080787adcbcf62dcdad2ffa9ad38e1301

SHA256
a26c3b6f6f77a35a297032c0ab11fa2be0a3e3d0091d7d2cf275fd40c84a43c1

SHA512
c9f59fa7160d68e2eb1cc8453a770423af23c2ea93a779aca1180111705096760aee976db84155973402731b113e7e4266772d32d1efd3fdd674d2ea0e5bf058

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

Filesize
38KB

MD5
8a99370cbc67874d68319f5b624173fa

SHA1
46d9eec29e0fc6d642407e5d9250a2f4dc65e990

SHA256
d5c8d14b82bdd5b502444d9cfbfe9ebd3e041a819bd5c187a50ca7a6b2c929b3

SHA512
813170bfdca29d5f0de41f4f538d6d2955750419998c35bf4aaf55b9e8864ba3ffe41d039463ffc0f7d5793d90d1e7a76b9bb77f68f002d63b4ebf5531d0e921

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
59KB

MD5
b2fd30df44561caba77e306bab6d040d

SHA1
3aa15b05e9428b20b6072c770db79f097f0558f9

SHA256
5d6c32e6ce14a8b55f4eca20d6b324b68f401977e42e858fcb0d14d3bf642a0e

SHA512
0c1d2a2680b50189f2582cbc136f64340ed69c140ca376c87d3cd37cb842fe069ffa7fca2dfcf99590a602a073ec8ea033a1fa4c6496f14864b1624fa9a17a07

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
53KB

MD5
cfff8fc00d16fc868cf319409948c243

SHA1
b7e2e2a6656c77a19d9819a7d782a981d9e16d44

SHA256
51266cbe2741a46507d1bb758669d6de3c2246f650829774f7433bc734688a5a

SHA512
9d127abfdf3850998fd0d2fb6bd106b5a40506398eb9c5474933ff5309cdc18c07052592281dbe1f15ea9d6cb245d08ff09873b374777d71bbbc6e0594bde39b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
88KB

MD5
76d82c7d8c864c474936304e74ce3f4c

SHA1
8447bf273d15b973b48937326a90c60baa2903bf

SHA256
3329378951655530764aaa1f820b0db86aa0f00834fd7f51a48ad752610d60c8

SHA512
a0fc55af7f35ad5f8ac24cea6b9688698909a2e1345460d35e7133142a918d9925fc260e08d0015ec6fa7721fbeae90a4457caa97d6ce01b4ff46109f4cd5a46

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
101KB

MD5
3e2c62a92a15319ea2b01de479f932a2

SHA1
bed11591175df0a3b1365fafa8b563f46653e273

SHA256
39f38758553545142d8b70caa13e9e2bdc205d2c571252a2f9d58320cc31aa23

SHA512
331ad4573974647a3cf5f34678564bbef8fd7541c7bfee141154d130ca7cb3cb610c89b293f6389fab15f035bf27e7744732003e37d43c5a9763db28c5f049f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
19KB

MD5
46c65c348f90aa174bfc5f9dbacbc3a1

SHA1
f3f1cb408e89e48b14532730632dba27858d2676

SHA256
0b36587fac66193c3e84fc32c4edfecf3b9a8717aafea51178f5480239bfa008

SHA512
e18be3c74e039ff4297313b12abae8719e26eb852724a46f119121d008a7165e249bc17d17b3275a108e6de14b1bc443a7827589bc4fd46d616de699b8294ada

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000011

Filesize
47KB

MD5
55a93dd8c17e1019c87980a74c65cb1b

SHA1
4b99f1784b2bb2b2cc0e78b88c5d25858ff01c5d

SHA256
4925dd477b8abf082cb81e636f8d2c76f34d7864947114fc9f1db0e68b5a9009

SHA512
f9ade542c593067dbcd13ed94da1ba17a84782575355396db8fd7c28aa70a3120d0c0a22d3ca3d2f0774c1dcb06b9319e243b36001c618c92e0af25cb9c8e46b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
62KB

MD5
c3c0eb5e044497577bec91b5970f6d30

SHA1
d833f81cf21f68d43ba64a6c28892945adc317a6

SHA256
eb48be34490ec9c4f9402b882166cd82cd317b51b2a49aae75cdf9ee035035eb

SHA512
83d3545a4ed9eed2d25f98c4c9f100ae0ac5e4bc8828dccadee38553b7633bb63222132df8ec09d32eb37d960accb76e7aab5719fc08cc0a4ef07b053f30cf38

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013

Filesize
67KB

MD5
fb2f02c107cee2b4f2286d528d23b94e

SHA1
d76d6b684b7cfbe340e61734a7c197cc672b1af3

SHA256
925dd883d5a2eb44cf1f75e8d71346b98f14c4412a0ea0c350672384a0e83e7a

SHA512
be51d371b79f4cc1f860706207d5978d18660bf1dc0ca6706d43ca0375843ec924aa4a8ed44867661a77e3ec85e278c559ab6f6946cba4f43daf3854b838bb82

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014

Filesize
19KB

MD5
76a3f1e9a452564e0f8dce6c0ee111e8

SHA1
11c3d925cbc1a52d53584fd8606f8f713aa59114

SHA256
381396157ed5e8021dd8e660142b35eb71a63aecd33062a1103ce9c709c7632c

SHA512
a1156a907649d6f2c3f7256405d9d5c62a626b8d4cd717fa2f29d2fbe91092a2b3fdd0716f8f31e59708fe12274bc2dea6c9ae6a413ea290e70ddf921fe7f274

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015

Filesize
63KB

MD5
710d7637cc7e21b62fd3efe6aba1fd27

SHA1
8645d6b137064c7b38e10c736724e17787db6cf3

SHA256
c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b

SHA512
19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000017

Filesize
25KB

MD5
cd74fa4f0944963c0908611fed565d9b

SHA1
c18033d8679d742e2aab1d6c88c28bd8f8a9e10d

SHA256
e432edfafbd52fcdbd59ef74892aa2e2ab19df6647ae723b368fca529066a804

SHA512
b526216bdbc73a97db41edbec6fdfd09b7b4ae149d415fb5811dde03ad4b1b0247950abd78fef807ae47674ab1b56ff0b971fa5e305b26bc92dc07871313b750

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018

Filesize
37KB

MD5
01c314da7136d2fac60822b7f5805ba1

SHA1
9316253d252aec8776e55bc6aafee2671bdac512

SHA256
bd65de1629d7e43bdbd27bdc073dab60a5fe32f3651a65efce9556e96a08ecab

SHA512
6883c4766b8274221f130aa9b443dfb525ccb962ce311ce9a0241f8860b842d8aec4fa0390ac600c6901d2ad20d4863cf51185e46a5ad409672e11f2f08ac330

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000019

Filesize
40KB

MD5
3051c1e179d84292d3f84a1a0a112c80

SHA1
c11a63236373abfe574f2935a0e7024688b71ccb

SHA256
992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3

SHA512
df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001a

Filesize
53KB

MD5
68f0a51fa86985999964ee43de12cdd5

SHA1
bbfc7666be00c560b7394fa0b82b864237a99d8c

SHA256
f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f

SHA512
3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d

Filesize
22KB

MD5
17a3b62be9665b1d0e411a8d87565ecc

SHA1
be09b90a1a121126dab9689f156c51f77bee1ac9

SHA256
038deabc8e304a2d574cfd4ed4aa515f8f174f7b3f8b80b416a4354d60b4f311

SHA512
6de650c1d46b2d19c14f1b8d21c8589ee276caa2a30654436176295dccea7f619c450ff1cbd01fe94d174cb032eebffed18036fbae4e10dcb17fa228d23850fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\02735674612cbc52_0

Filesize
1KB

MD5
1a2dbea2f8d23ec68f86c323551dcaa9

SHA1
71e4e22bd0d975d5bbba074e22b2b9da7e173df6

SHA256
e78e890fa9955305bb0828612654ac253a92e69a6b5fea27821bd16cf86bd886

SHA512
6d9d6efe14e1da76b20b3fe7766f01d6fd4bf55c39a14ce5e802d640155a554440ad271677a757b6f9b22f4f0096ea484caf034a65bd51b15ccdc0dc8f81e61e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0373765715b33cb4_0

Filesize
294B

MD5
681df1a94a15b84c05c07902021b6355

SHA1
d8ae163edc06c188024c0001c214532f224f4bc3

SHA256
a047dd31b464696402e903ccfae3e5d91a56f74ee261b3af76bf93ff1897ffbf

SHA512
f3a261dfe1d290dc1b5a2454bfb17e063bc65aee65c27bee8679921be76b6223bee2ed5467ad4954fd69c3928e3f3371ddff4a7a30330c5df3f67f5518881654

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\03eef0e77feb64d4_0

Filesize
6KB

MD5
b895055817b24637400ef4eae1388606

SHA1
fd521f60673897f5745c91811c6f16cd2df4b0c1

SHA256
6cda0c4e5bfcd3b3627c81dbecf24c4e24769bb4085a07395affe2616c61e637

SHA512
442a900eb6fad786573d06ab6e900ec1196e6953476c8c6a8d32235823b565505cd1957dca1b155ec9f0f3a2904ec2ba925b1fc1c2f65824e250855b7f1d1d45

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0bbe00d9bf7b798e_0

Filesize
2KB

MD5
150d4a8c17b4fd1ab2c4245f3920066a

SHA1
6b46c5bb082c59011c016daeeb788d19944c5dbb

SHA256
f2550d37cbea8c582492fcff8db8cdca2e8e6bc20d4d672a4309297f1dc264de

SHA512
99f119d4a94f01e2c4a5d1f23d8ae3f316d9a65af09eee1ee31c2327ba22a35bbf85cc02251931e4e4da88c61de64d4cfdbd862476588c20b2bd7627a95c11f3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\14ff8116b518ca2d_0

Filesize
2KB

MD5
0d1ed3e9062f8978774fc4f02e63b9c2

SHA1
f3d0055551219df85e4491520943f2f5e7168b50

SHA256
1d0f6875c0949def396101df4da5c4c840d133a376d9e234f73e5333e813e43a

SHA512
9b9234bfddd3b9af6bad13f8197dc12c2dbf286b4f01af450e7b88087eabeb3e6d8e5be14cfa43ea0401fb1c090a9ce5dfa848bc5f0acd7c29c775436252c0f1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\25c90b4fb1c6ef85_0

Filesize
1KB

MD5
053055b2899840796b18a0f08e3a37b4

SHA1
26ab51459c570c2b6c4fd320c4f95daa76cb7dc1

SHA256
a474c5d06564154ac02fbd0f6afdcec4eaa96a290ff876ae855d2096308ef6b6

SHA512
a7190f64c712d34b376699a6592dcc870d22ab14ffb804d224f05e361e75645c4bf91ae7f7349e1f0fc77ee439e716657bb81814cc260340d994b80ce3424923

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2b7ffcd51b01561f_0

Filesize
3KB

MD5
3b838ec845296a7f053bc6c41bb88465

SHA1
24cc0dc33aa970849caf4dcbc4f93ce31dda2a4a

SHA256
20c55b87c5e2ab9f28c5a45685c042c3b917c00f10bb50392407909d0688bcc8

SHA512
db4932e07bbbc129940f48a17e2c37674e2894b9c4beee1a2a0d2a8ffbe37b35dcb98ddfd75fa5b29d6684c0fb9eb64a6037307baf5d267592f03756270f6afc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\302acb0cd4a267e9_0

Filesize
6KB

MD5
a9b7b6dcf8e316be8e7d7c0664d0f91b

SHA1
150157400405a761bd4453ebe3646b23bd69789f

SHA256
b58b4ab28fcb255cdb2ef6f5bfc1c3521e8f87c59c25e58839e510ca85f53b7f

SHA512
f2a66d06a2b3f7d36a3f1a704e6958713e4bc935cd2fad65a84fe4477473a3fff54e14d135eb037de9b925b73f2468c8bed56fb6218ea30545a6d84374f8413f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3fd2be14abb3904c_0

Filesize
1KB

MD5
0307c7ac380f5911c226ffd5d3f5e5ef

SHA1
354629626931828be72d63588e349d8f0f0adc70

SHA256
1a308a1d9b7849eaa115c2abf05138536136d746e5752a6cf3bc3c080482c29c

SHA512
c9f1cc3ec4515c40a354d6e16fb60c0cba562ee6fa1b94427559469cff6f91efe5bb5cda4c086ba6eea48ed613d469bbe57380bafb70f42c297d247e9579d36f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0

Filesize
1KB

MD5
b29707919583a08b83f067e272fd4d5a

SHA1
85368822ff397e0a512306de3464420fe710fdd0

SHA256
749418ba5c78b9a154802f20bb6662d53a31f150004f1e49e78926622915149f

SHA512
9c7a9f9ee4a734c964311bec3af9d9f85bb171f97bfa66085ac5e936dade77a7ff89faa9696be9d2484d8fd86092f0068260fc15a7b3ba67b533bc3731feee3c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\46d8591239c0d052_0

Filesize
2KB

MD5
1557d3559d5358f00d12aeb1ca0e69d7

SHA1
38b1568af0ca202a2156a4b657a901e01edc4bb1

SHA256
c109484da268a8ba653e0d576f659df113c4da44af500524a7420ae85a0e9b8e

SHA512
924e01b2fcc5f05ff5c937e99cb97adab42b7e6c6a59184176b8361fb0834d93a8e93d4a5069801209d1d4bd3a832fa0f847dc2b85659f8eb6920315666e943c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\476831ba582729ec_0

Filesize
3KB

MD5
de4eb848d5a5e483d2206dbb209a7523

SHA1
ac9a1a2aa147a2f3fbdba7b9a44928263421a2cd

SHA256
cd35dd67f719eb6e14dce05218cc194a6bd04da0d3f710e5676278b6ad4ce213

SHA512
17842f76ce5bf317a6522b65555fda82ba410a40cb1d5bc26a4be149aa35d5d482f9aa0253c636056e2dc817b7b3e032b688091ae587d59c4ac84e9904eefcb0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\48b1105b4c2874b5_0

Filesize
1KB

MD5
86b2faaede75195bb3cd86f481a0c53d

SHA1
e51fbe3ff8ab30c725c63898b8580cd669e97561

SHA256
674dad58b831ce69b4a019c4b45a8578cd4571f0641da8154eed3cfc86313265

SHA512
664b72d01409a07ee3a8e70695ea6f88f3fef54dfd8a4f16fc4cc86abfeab5fbe5c5a793b84d8f67041e23d4463584b89710ac4a9fd1c2626a1952be81a60e4f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\534ab76442c26020_0

Filesize
13KB

MD5
25d69d4bdda809a23cb3428b4518d174

SHA1
3af79fa557262877def1338317a7173d21c028e7

SHA256
f14509392972566b5bff927332c659078b972110e42170df917504cb1491630f

SHA512
a2bc6fc1c853866327e719bebf0b096eba2fc438a6de1a5fbe6e7c3c5594f5c03e5f6465a9af247d4bdc5cabbca1e1c4113b5d984bd3dd67346c41fc93f5be95

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0

Filesize
2KB

MD5
96ee73e88888703c59b83bd3f2bbc292

SHA1
439843b488acc49de47ee83e54d2b3022a076c96

SHA256
201d7ca2fcc210094a237029fb0047e47b2bc63ddbb97981f3ea7466d71da0f0

SHA512
eb42c1309c1feac7b7d8f9cd62df2f86855a477bdab6da3c12cd85884ecf4d5f7482ffcb95a801476b997426bd6cf72ec4083ae125f4969b5d05988cc27d328b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5801d3329fb36c59_0

Filesize
2KB

MD5
01baf5cd52830da448f2a834db693169

SHA1
36f62407ee55a93f583e5d46b0d91896b69b6c23

SHA256
e9c1d3348fe2c27e10d6996de3b1fe3f1446d112b593e1fd9c2eed1b8d5820ac

SHA512
5444a2ff1778b492381adbfc9cf115a437804459fd2d42f660cbf2c6e26c2627341d53de7e5262a6a641dcf1ff7daaa09742cdff4144f50bd8806be1fa5715e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\580fd9376c2d4a3e_0

Filesize
5KB

MD5
a9221d6c3f34eab3440394dbc3c70b13

SHA1
07a6f3a185e59634242cdef87a2f4de1a12c533e

SHA256
0a37bcc95e2e4c26b7cd2c2c3fbdd5aba91752c2236e3701613da3b1d343646a

SHA512
579116c4da9e2badfaf9f4d5fac4cabd36619779eaf420f04a328679b68b34356b9fa555b06a97cab2e38fff270ae9050bfd3b19682923598ac11952f61daefd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5a994fe24b451732_0

Filesize
4KB

MD5
4d80fdc1db3d8a75a797233f0e6397d8

SHA1
03bb7244b39de36cfe46270d6f49e0ab39e371d1

SHA256
64fbda46a44980c29287e230d540f1db0fdf0f499274b4dd0bb5b23dd7bf5abd

SHA512
107ee98dc02fbb01f029d0a76c5a97f4c386efff3b0422c72a42aa6bfe788a20b7cf5afd77016e8e6eed98efe23ae7fdb72b167e3394cfa72ba99cb32ee79911

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5d0c04f9998369cd_0

Filesize
3KB

MD5
3d0bf045aa818cc259ba22e7e48b5ed0

SHA1
94db442b7caf5ac999aeaee2a9dfe853bf0f72db

SHA256
7f06cf21f37734517c9d49c6d1790eafe1fb87bb480191b0ee21e4028379a756

SHA512
408fbdd328b88de9d44e609c2c35e151088a4943049bc21528246a13d0e87d83b93df427915fb059a29b9e1f8c038e3253fcd5755400840743d570edb7c2315f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5dd1e579c9681f95_0

Filesize
2KB

MD5
38e4b3ae687aca02633df94d15f8f86e

SHA1
7ae537cb881749d95da6a2ce333d893eff753b04

SHA256
586ada290ff1f64183967978414a868c60ced99f48bc7afb9680e6cbcb9df8d4

SHA512
c2ac3c7ff7f9fb37d00c2115e02404403054542ea9882ed71ab7c1c5d505fa28c7d98965824cfdb0aaa91bb3c7acbe8855fc7fb22b06a477c26dbfcc0f91abea

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5de9f44e801f6134_0

Filesize
12KB

MD5
f320f127ceb80d5c0c91a5c70b88bbb0

SHA1
1853edfad6f800fc41fde05097e91182998c1780

SHA256
e59aaa4e93f825fd94c7940286effd939aa25c39c53e4bac82fd8457823123fb

SHA512
d5f23db8344323e24c8962161519c7212cf598c5c02570a4fa5157b506ec0ccb719a8ccf801d70fd901b51846038cda255da017fdbba93874213ee6edb811e17

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\605167868572c6c4_0

Filesize
27KB

MD5
c71043370f886a48fac495d766677216

SHA1
54573d424983e7e02a1c0e0af8d24e69d1145ae7

SHA256
181fb80b47c69f53cad54e90fe0ff90686457184c5f40c0e27fc5ff689c6ad2d

SHA512
9c0f1273735993a22e5e3363a016c922bfb81ff29ab13b821acf4ba7efb00fd1f94a2d1e44ed7a694f09fe657761abcc6adf76ed6171720eda0d27460bdc14be

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\635e64b37935c888_0

Filesize
1KB

MD5
21af1adaf328a13b132746f2f915f06c

SHA1
c7a561cebc0e6201102ca57107f2515484eb7c26

SHA256
397a1a6e299e355e61f5f32dc524c61f96e7e86c72bcfc3dff78d9c923f7837d

SHA512
2358bec857bd30498662bf620fa0f1452979c378be1bad93eaf8ff33f62d6feee4386cdb6171bde0e136fb40dc68017fb3f0506bd302cb793dad820ec2202b24

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\63bab61298dfac24_0

Filesize
26KB

MD5
f3bc287347f01902e40349eb2b0c12af

SHA1
6a7e1d39337d0c04a69f5904daf50e0f01b68d05

SHA256
04ed3fe3f8bb0b46bcafdf26d72faa665187ae80580128ca7ef055c4ec2ffcd6

SHA512
afd325ba7fb33a5851e7b85f23cc3445137983e99569c3d51b9e44b4a6c7571891faad6e129f579b5f2998d615b9bb59e66520abbe70e0c7ec3c7e6d08d86d53

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6456a5daf830aacb_0

Filesize
289KB

MD5
cd2af2588e09165186edb0df78e44349

SHA1
921e549a3475d1d3cb64834ffca590e7d3dc49e9

SHA256
c0750fafb8c5291644d1a009726c6f737cf800806eaf199d24041cc3f5965abb

SHA512
289d394d05878f9f4f4af5fff361859e4c90878a92ba47b7eedd1c4eaa9975ad5fafbfbff5b89d37dfb11ba3370ac533bb9bd1df1721ab9b62e96e06cccd4cd6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6a26de030ab5c02f_0

Filesize
21KB

MD5
980e285103e460086ec6018f73e897be

SHA1
35572aed5486535ddf76b7b279f33af835829f7c

SHA256
4817b4a04888d1b8892186b14337664ff9ba64e7b8618f5ead4fffeb514e7993

SHA512
3aff2bf2bde11f8e17520f56ad6307e3eeadcdca4906989012bc65780e67b9d18f93853547bd57b99e168ebc6f772b95a6e335448216dbf351050ebfd62b66ce

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6aa9a2943612cce1_0

Filesize
2KB

MD5
330eafe422279486f11e3e9aa8493bc9

SHA1
78025c8e32bc3ef134cb57e774b24b817d4fa5e1

SHA256
e7356072ba0e8fc820f01abfc9c4af23f337ef7a1bf95efa1e00ea796a55531a

SHA512
77e86b48270a087c0fbe9430673b7d9daf0c543f8f41d18e24ef5e8748b7128241b367909fdd3b3a5a67f43767ea7a9e32d6d35e0a4488f670b427c3eff54f87

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6b7644cb858ee390_0

Filesize
2KB

MD5
4c40c7b2d874300fb17c0a18705126a5

SHA1
e0eb0b33bca7fd2e93559bb6a60a85bbdf3877c3

SHA256
f092c7a4263f7b1c1ea4ce6230741299b1e6a953f7bcdd0b1f9c8daf9fd4a6c7

SHA512
017d03dba685f1353622c3cc2369ea3d0a26d7c3210ac4476deb18cee3c758e509e14f18b25f52a5d3798c121f0d5c68e07f317a52df039f0f24bd46a9a059a1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6d3b0ad57bdf7db9_0

Filesize
1KB

MD5
ccd349376f551d6078402be652fab506

SHA1
ca3ecb2096a2c1c103adea6dcd3a852d3bc91a5a

SHA256
eb3c7408c24e7f9f22f0beb39fcf699d111b7cd740960927f4cde51ab12061ca

SHA512
f50e24e1feaa5b4da0458d35c6444f28961288f6545adecee5b3e917cce80ff9194053f8cc050ff8c76e92b886dfece30ea52c441daaeb00338461766c4c826b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6e1427d19ff38087_0

Filesize
3KB

MD5
57188727ba30af40a302b015f277f3e2

SHA1
ff0eb8878b53d17b21b946d111854c99e6da1c08

SHA256
8130bddbcfd950604dbf01328d687c44153e07b305c5614c05f49cb213b44287

SHA512
1008c2d02600d001a0a7d24632fc147b69b40bbf8e73887d396689b13497249b81d5e3b1572e4d2b2761c3d328a0cd036340ee950a7a8b894311ec66bf7c30cd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\718aba49c9504085_0

Filesize
2KB

MD5
a162a3773b43ae464a8ae383cecdcb57

SHA1
62f1a9b79abb72ce0bdebc212ac09a2373f28778

SHA256
aa6c2a8ee9d393c9d9329baa7f121b559e03743ae82e685e02e9374f1227ed9b

SHA512
2aed69b6ba6c4454207e4542079959000c5faefe76ff1af1a3bb97015539664faf344967f87d56a23287245825f05a14a70a183b5feb653b657742673e2587cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0

Filesize
1KB

MD5
ff5da78b9a0477d5ebdcd69623bcf78d

SHA1
4d4f0debacedaff9057948e0e400bc8640c5508a

SHA256
db098d02a019692fa0de253fbf68643a4d1383d76bc220157f8824e92516d1f8

SHA512
564e1137e9500234c2a2b4ecfa905bf1ebf000c7838e610e366c55c4f90a7a1441d88443c9a2372f983014dce4b89d9678d9dddfaad8605f03f0f280e345ab54

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7899d2b49a9daab3_0

Filesize
262B

MD5
9438c0ad94c52e3405bbdab86ffc3fa7

SHA1
0d7bf46ad547196851f8bc3d6d109b94562e61ca

SHA256
0b3ecd31eb816f59594ae5cb6c35be353e12eb90f8fb23d680ebabfde14f4c1e

SHA512
b3d3fddde3f77dc6cb78b3f0cce065b95228612e5661091eff8e5ffe789135b8dad77a13e08c67db6619eaa6f43371556e717d085d3ea8c6e5677f41a838373a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a66a1246c4f29f4_0

Filesize
9KB

MD5
1426fc68ea5337143b185598367dd535

SHA1
6d372c9605b5c315530ba2abea479282067b900e

SHA256
05383e348c27b6ffca9e049271b5d9be9ddadd583a139ecdd0daf3084b475d52

SHA512
ffffce6b05b63326bc794464f3df51368d24fcad37b5a2ca521fa82fdf574cbb13ee65f2f17a27c32ec77b26bb6554283d175acde0d4ae411d7c0c32a4cae1c1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7cf9843337c39c04_0

Filesize
1KB

MD5
e0e2248bb01e78f526c7fad0c72a73f1

SHA1
361d514b5bc98935d3935a1bd8b9f9d3c068c15a

SHA256
2424a2cb7bdbc98cde2f8f4181fd3f6f462497aea2ea9717a4bf3517726642d3

SHA512
8d2071679f3abff0821b137b85f552053045bf9890ec9475dd35fc12084bc3c1a9d144182b0f0d336f08bb477f5a390269d94afade4b2726ccd3f0f15483d580

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\81764cdb356c9506_0

Filesize
6KB

MD5
eeea0a915c4e7a4d044aae09cd32000c

SHA1
1f6c6524799d212727369a05f837e42ca97a4258

SHA256
e301afccca2fa6556046061e2ad71aab80587970407b5553bb13594118c406fa

SHA512
1fc77c5ebc09029e06856df6a5ee1b2bf2b3a9fe5c4f15c6c070ea3d082389d504efacf42ed13c1cc66be1e37450459c72cc831a5bf0fe392fa5637c62917a55

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\83d6d3a772bbc707_0

Filesize
6KB

MD5
06992dd398e8f8d739171ce0bb44d919

SHA1
0dc2bc13565bf20754d36487ebac32f8d00f9771

SHA256
02a0632699d60f002e01563993cca6a0b46b5b1577023cd3dd70c9c8ceac2c15

SHA512
22211180941f270176de7409e942521db7752b381e4c118d5255cfb9960d9f66b116b13551f06ba480e529f119bc650b3ddba2e30a58972ad27f2aaab5dd5649

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\87bfea9426cb2ef3_0

Filesize
2KB

MD5
00f946190783b32d23533830f593d73b

SHA1
054c0cd89ebba6264fc52b5b47192da09f211454

SHA256
adcb10d2973981c2ad41de2590b4cfbc09bc519272b1e4de0e1b91369ffdfb04

SHA512
58dac6cb92db2476c05a35f4f6499172730abf509465ee402495bb7272f1df8947d116094abbd0c1e0bb028ffe6543a306794e09143dbc7d5e5bbfef059a0d27

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8908012b8e4a5af1_0

Filesize
11KB

MD5
421f76a8b1ec6c8c7c7b306851f305b9

SHA1
67f6dcc49ed9adaf5ab0c30884141cc5afd3122b

SHA256
6d28c0c8130583412f51d368a8c9d8cd3e8c53ef6946778c5e99108847879322

SHA512
f66735a6528ef596534ca6c51e3e3934e53e7c13994ac101fc1e18c73dab03e8892bf365862c1d76f3f6bf3f2f8ed1a2156c297b1dd1849c6cb9be52435baf84

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8e5987d08f7b6e11_0

Filesize
1KB

MD5
d44960f333fc457ca7bbc8e5cc467f97

SHA1
3db460bf2d3da0295dd7bf6f8c247517e72524ff

SHA256
52c6c7ad9525edee1cc02446547882a71a25c81a75e95641c7d829c1ed080627

SHA512
5713cc1e894be0baec699399d80d39bf7255cdbde040f6e1f77f0eecbdcf51a040297664f7445deecd535fce01f5599c34c2896e454c59110a34bb13052d04f1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8ec4b11de0b23393_0

Filesize
4KB

MD5
26592603218ea19126aea1581e196e63

SHA1
b6a7595c6d7dea94f6119d6f1b8c9021f06659a0

SHA256
0eff2009554440aeef6aa8ed7f20557ea60ce8de29a4de0739d550f64554c70e

SHA512
22ed03d6735d4773e9303c92a694526ca7d7044539246ecabe4e6b87a858746aa19f3c230ea99b306202fe9e4e14f8321b449a4395ce271aa0cda50363d0cbfa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8ee73a31bd0cce7d_0

Filesize
6KB

MD5
6f065413aa2d4b3e7137db6cf317244e

SHA1
4bdfe8fc007de3fd95a5718594a294e021f48fe7

SHA256
d92525fb8ca09db54e3cef98e3c97db0d61922581d52c00b56da6e0e3c4654d6

SHA512
2a055985b5b23d9d8fa2ebe38c268a8b850e0b6c5b4c33ff7ea7ea4350a5ced0c5419ec2cde0c1db324747c15f6a6b9396c0da5c6c02f0bc45d45953c1ed85e3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\906f04f90e8eff15_0

Filesize
175KB

MD5
1c03c4470efcb8f4d5775fd3d373694f

SHA1
c3e27575937389ff2194859c2981196d41a039e6

SHA256
71ea38cee20590b568bf92d7e285fc082bab4125fda26b1bbd9a9d4a4cb66f67

SHA512
d7af89df46a64dad5ac1f350fe3e87be0ba6d5ee2218b3e4aeab78f9f7bcf6b18d3a073bd938288317f02663e6eaec8688536ded7cb1cf3d49dbe3c5ac5d8cec

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0

Filesize
1KB

MD5
306e9a061f77e82253f30f81a4945f62

SHA1
08c74adc920fc602af295feb2bad6eaf95bd0c95

SHA256
30b9cea7b77ef047d7d1d4b1edaf3aa4eb9884fd1de039f8c72b3caef16da999

SHA512
cd0bc14a04f9348dfbbea4daf7b7dfdbe8ceb95787f4b4fc1d52b8a912e51a02f24e3ded83545e08619c31e620f0830478bdcf49dd71b261b91af9359cfa46d2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9a267665648440b9_0

Filesize
6KB

MD5
83ebcce3125e5ef332b8eed295431cd9

SHA1
79a79dda27d2473f4b4c9fd4c5bb6c7233eeb864

SHA256
ac86829837ce07449a109a027dd1848f0626290ca8e4e22311d67682142eaf13

SHA512
9823372e4e195c4d160c9b4e8419b5e0d7938cbf86551dc189a68ddd2f90ca97866c4e18c6f7bf0945a48dfefcd29d6875816b2fac2dd6baa72f7c263a8328da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9a93a5af80c0c9ac_0

Filesize
1KB

MD5
39d17eec6456ab3a7fa24a6ee850d7db

SHA1
d4049638be49b5a95ba9ad8b60bb04a75e2a265a

SHA256
f6dafcda5555a968c14ceb432976d3aaa987ac1627dd08f1b84153754f14f972

SHA512
29e9299653e1fa0211f9ccf60da60304ad2b5572353cb6122d68d41d5174d49089abd7077094d6a9ae78cc0114d4861e64ea92a93c04116b7e72ce04b00a1ec5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9dbb949d27873cbc_0

Filesize
2KB

MD5
34d9f09f58322b15eab3ecbbe8a7952f

SHA1
4ca94744692ed516249d0a7933e11ab88854c734

SHA256
5411bf0a27463b423533c8823c4e0d11a34725bf7591346013534f874954f1b0

SHA512
ed5dcbd086495f6307909a272655508569954b633e3d913403e8d529aef397055f22f9205d6db7d9f863af5e9078ef8cce720910a7c48a9c977794326a94ce30

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a09f6271ad0c4092_0

Filesize
47KB

MD5
d815e6cc255f88186bfab4e3f2e4db32

SHA1
b89898e994fd0616c6d17805790918da286e362d

SHA256
24980adb4e9eb8f66e3a68d0a5f6aba65d164d0b4cb1350c5e2658c953a26c6e

SHA512
8b06ef6755611c3c0b6ab76e1f79643883f0dec1f30d45ac342935922e70f443a0c7b7c17666766d62a83e2eace395c1f36df3710c42bf4e97db48ab99bf8a14

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a267b7c21d8b8c9c_0

Filesize
9KB

MD5
7414b7b89c95b8ad12fe2fcf17a4dec4

SHA1
b89f4ab178a9341ee8a4932a6d0eef6dcd987eb8

SHA256
62743ca3d6cc8ce0161f822bf5dcd51c70ef1a208ae0c5ce4e1cbad8cd8f5810

SHA512
8fe84de7cc57d349c1fce6d64a46a61676b16269e2277611c5f4c7e1be9d0c816f521fcea85fcc56eb2f3183d1e5ee8e85472b61e1aebd6416b13ee163decb0a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a67769912ffcf13f_0

Filesize
7KB

MD5
7f4ffeb7b59caaba976406f34ca43508

SHA1
1c3970c57009f1f32074fea33c52bdbb825983f4

SHA256
1abace5dcdded7942d408b597a9ba049b43fff47d69861f7544448521dad1a37

SHA512
ba480a1650acf963b04c50ce814b9dca84b1840ac05ddb41f9dbeefd055f8b5ef72eba5499979f08693a29f59e58e5fa4c97449bb3e7456c614fdf931865ce83

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\aa5fe3b36e22e31b_0

Filesize
3KB

MD5
e55121c15133b5ae49147ff0b6d5eb13

SHA1
1ce5a8fa20ce2e19e594bcbe9a81976f5619976c

SHA256
26733b0780e198d07e4db431042160ff801711724396673c5fd16246a7205cff

SHA512
0f3e41ae3c08a972bcf41a6909ebf851d9397f6a93b6f0f47b22724fa59d642dcd1234e4edf8adddbb8acf1c10050d9ef03a7d51e336fef4b46dbf39937f298b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b3e82669a81c981d_0

Filesize
2KB

MD5
ef6a7e26186991353c77066471ef82b0

SHA1
d145ec3e79bbb8111cdf419eee061ecd1154f70e

SHA256
bd24520278857a84ac8b08d198fd8897de14c62f0444a6a64b56adc652c3b874

SHA512
26237dc9b9ca3e09698a860cc1ec9a05ac7241ac48fd5ef750edb7cd1a241e4e3c727818b398eff0ce7270fc01262219fa17cd0ab3221fe66a609cbe0e75adb6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c7acf66d55d71d0e_0

Filesize
199KB

MD5
5d6caa7f50dc26897b7cef524bd8f88c

SHA1
ada2ed27387b86548d188fd3ab56470c899239e4

SHA256
a661f1aa823b9686d62edb8be9f0d44e16750e9f3138a655286a94aca2b028cd

SHA512
bb1e00d63521972cbeae6a59d8abf719da0b59392cb16a23d24d490eda6957f62630ef9dfc5c82eb2a92145dd272e22c3dca33a56642d9059123087b4bbf3c67

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ca5bb3c84b908d6e_0

Filesize
2KB

MD5
38dd2efca3d248fa8a87213df80ec3eb

SHA1
938f475b7959d4abeb630a03a70366fe86b276e9

SHA256
a14e7ce3a3dfc7888414132fe8e4468368689c0a16638fcb8186f9d28793a710

SHA512
c7f7a857297ab80eda43d4c290a08bb5db6a1d8151b83eb750d291fef2ce169a55b99695dd658da2b22420d7608e28f237ce6eb1dcdbb8c17b0401cfaf211ee9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cc2f0fedd3e9608a_0

Filesize
1KB

MD5
482575feaf98e238965fa1adf367f4df

SHA1
96d1340329b45b575f75ba824f92918a0fcbf0c1

SHA256
9e53675dcf0cfcdec840382f7fd2780bc69712e7a530e6d877b61f49096c90f5

SHA512
670ff16ba080535718b242e55c95fdcf004a46d4f34f8b0032df65cdadd43521a0e42ac832afaf98c02be6d838fc3bb3fe3d4fae5aff4b3fbb9f2b45de4814dd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d3dbb3008455b523_0

Filesize
262B

MD5
adb03e376cdebe9c00ea7d65ac48ccd2

SHA1
9969759537e806820b9abd951f49a6d4179c3efb

SHA256
bd8f255766bfe6f512788796324472eea4dc26e31de445886e0a3edbf4cb883f

SHA512
f2df3673a5f7b98132ce0d6e543c05f0c1476d006001988024c9aa524e64f39109eb3a3ed08ad36b50cb4425c2eba2189a39a1a031369775630ad04035dc150f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d7a29efad91a1117_0

Filesize
262B

MD5
2c1bd37e03035d08e4af67fe522f5182

SHA1
3c7975ed8212dfc7d8dd1914ddae463dad79e558

SHA256
fbe5faa1b22ab6941abe303b654cb7e11eee19ad80df5599c7ca9c79e9cbb2f0

SHA512
a7493b16f68dc2b460b42e608afaf50c84d58f4d857a260fab691617c8d62621611a35dec0b166509c3011a49b400a7d99ec3c7c49a8c4425db7896faa36f34f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\daea348421cbc209_0

Filesize
2KB

MD5
804984b389d3f02aa0c7c4dd9d66b629

SHA1
1ecbc7c9bf77bc40b7881e6ecab702e49dda7874

SHA256
b4e34300031b48eb033007e7b99afe06e1d9a26be6f46b388cd73d095b5fcb5c

SHA512
1e1bc4b8dc8a8ef5a6a636c4adb17428e9ae2975529f441f46e011a67666557060b1641fb9513af4372b65890a757ac25d5f4c1981597208c037ca02477c2bf8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dfe07f2c15075c28_0

Filesize
28KB

MD5
801f2249e520d8c9dbe9f42cbbf05cf6

SHA1
c2a4c437df72696764572bf76fe7e39e34113bce

SHA256
4af4553e779a251e32018352e03c270d863d644f707c9304b89fb0acf395f91c

SHA512
4e49b2e02c6790f813d884a6ab04dcbae65d1593122eba38d9aa42703c29d09527523f61a49c503323f894799f3d721f8c21360d176fb402aa27df083aa8b4d4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e4f85019800026a2_0

Filesize
8KB

MD5
f44b9878d0030e7f6cddc072c3f0e154

SHA1
3d302aea57bdb0857517da5adf4fa8222c393b43

SHA256
8a0c05fb4b582344fc28f65ddd00e7ca228b845d58ac32f8c1bb78f29c7a793e

SHA512
89f8be030039361c5d6b948afdbff8f2426d41f2b86e12fbda2fa46f12b98c5acad20bceb83a91e9add17ca519f714ce1a3f13ba01fd676022e8a1fc841801f4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e55f0a6d1b533c66_0

Filesize
2KB

MD5
a05c4a26cb65dcef4e6d01e36442c7ae

SHA1
239b80f2d33f2dc3a1dfd1ff8ab5b2cbeefe882f

SHA256
a5dc41a177f61712ebec1219633f3fd8a23d6fd6d5a9d259a3aa4b01bd33b5d8

SHA512
56a74963705e12a82480ee17411fb45924611798e82dfb50839c07a566b564c16a7b5c61c9ed5bf32c1e902c8133aa52dfa051daea32d706b4da144abfafc5d5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f1666ceb81f00d8d_0

Filesize
73KB

MD5
e49f8ebb5db4dcd11020181da77c95c1

SHA1
1d169f756876fb9db0e9f8140dc9cfbefa2d18f4

SHA256
44ccf6355595c9a2f358d91352b377338e73109d8cf1a74aa9aea3d2231439cc

SHA512
cafc61da1fedc097660fad38999a675bdab78a807b097a9391303ce700cc624d28c9f5a9a32bcbf626ec1abc2207cd1578b325974e32e25fcd658575c3234974

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2e4bbad99a372cc_0

Filesize
2KB

MD5
5cea064d463ee9994740fbe60a7dc435

SHA1
31f02d0985c194a20ff31f1e672cb93dcfbfb55b

SHA256
a320b0bd67ebb4eab065ba1b7338912db11eead08f08299c7d78c1a7228fdb57

SHA512
931fd0e46312bae7f96c898d2f964d9719dfd058aee15466ca48850cd385c37d72a248c631f6e303016e7fb80254d74180bf9ef4db07b0fac751086bdf2cfc4b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f9f54d7f2e6cf0b1_0

Filesize
14KB

MD5
2f97a9dfc291f71fcc74f2783b44d238

SHA1
bd8d9138915d55fe3d39101918ab7f0d043292d7

SHA256
8014e33a308c0be8a8e4d76e76c5effd7a2df8b8f1bf13731d6b67d219f6d5a3

SHA512
b2d4219d008b073be7eb5b06f0fe243d9ec513d997dc520fdbe38a6580b7bbbc64037578cdb2d769a153d8a004fe1e1dd7bc1e3e7850344432c17bd8b671615f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\fbbc3b076556d40d_0

Filesize
14KB

MD5
0ec8123d5b15e8aa33f096b0f3af7a6f

SHA1
51b63286f372307ee9bf7a29c59b97f56e7fe2c0

SHA256
12495ce449bddef2dc5d14713d3c4b41591177d9a580b3c6bdbb913ec1d81c8b

SHA512
a828959888439a6bbe3b138fbb07a96b9d0cc5a8485649b374d7d12c384d4d8c8859d675b6a19d643cb2617cd55680060491799afd5679a514d7084c18242e05

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index

Filesize
4KB

MD5
9514635e283b086ca2a7e4dfc021d714

SHA1
80c9351b8e1a890b9196562b2e91bb09a164f1f0

SHA256
249db12491730d231e3c5e1a7acc461ac58b134eee01c56228bcf6012559cb90

SHA512
214da8629c03b616eb7d2349fd6f0ad9aff30548ede3ee86bcd36879e2e85fdcaf0081b3df60b4ff17619da6cdf48c60cfa90465640802c35f35f96a318e9032

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
0a341ef449d57c486a1dae820d2c9f93

SHA1
8b312b7e3bc107efe7e95b2205ae47df5a437ef9

SHA256
94b0e22916e6d4fffa4089472ceda3bb2f628a4c0aa3b3da7172a65a7ceb57bd

SHA512
ebad4668af894c57bb71cd35196386019cfd10b0e8ce2e00708b5fb063a26e4324a00486b0fd980f14bf17130a574ce754603aff8b9ccba8b4a5ed8c976ede74

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
3b8c01f34c1fa1b22ec15f4c31645536

SHA1
bb0a896e59f98cba3921004593e12b6bd6dbcfc9

SHA256
5166971f8230667d60bb2511ec72699c64c509da9f7c9242c72d6041239d57a0

SHA512
ffd6803e38af814196155432dd95f1377808f42b663809a4b5cf4e4cb250018cd18234d608cf4d66989f7cb1b1e7e253ea890bf16e35cfa8f677baadd2db5b34

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
effbedbffd768cd861c5a439d0aeafd0

SHA1
c03689d057fdca13f0d5f25a89976bf2e7fc848d

SHA256
d4c1722ca4e7de9e72124be8b2cee5a08b6f0f194fec32ae64ca777a193d27bc

SHA512
080d12d423f53ef451a92fdf4e1206c99425026c297afd030c87bc25894b5e3273650ccc5f51632f957ecb36010cfb73a3fb07e2a46ce79d9f553bc2eda601d2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
4da30916c2981a6211bb51453b253feb

SHA1
e29308d11c4cc7ba65f4231a61b814aec3a0a479

SHA256
fbe5869747b74972018e765bcd3af66c71b7b61bdb5d9bcb3d11c04cddb5f319

SHA512
569ef57305ad84b1f2f589383fda2a0caa4fcb15799c59b54fbe804347ee39a31bc0a17c6e0e6b268c3b4ddb71d6c8cf49d9679de2edc4121a07f081bf920181

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
4118d4f6b815bf87ec9cecc9a6cc16b9

SHA1
6cf9cafaedc5391468fad3c62dc7a07a9275285f

SHA256
fb0adb0757e6bc1d584de45cfdcd5a89dde54d152399f3b76343c01fd915e17a

SHA512
71e38932428247eda842b6af8024a0effed14fab192c9664dc7ddd29d49bd4fa72e02f83accbf68afb844960104dba0b49d8b7681cc4cec0c279bedd3c22876b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
4be44b6bd9772db48a8a4e42c4e55ded

SHA1
50b562cd7cb337c4abff29bc0324c56e5a87f708

SHA256
15c5179ca214caa34211e902ec4856c08ff55646f17110f14b543d88f2cc06d5

SHA512
f33951c29b4bbc10ca0ea56267c2dbec6411b52f6e0768b200846edf3d0fb97f2c9d75b4f912e1c79aabb314d9c48229466326a7518a8b82c791023c0cf811b6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
e00ff2c398b92bd25142dea8a133fabc

SHA1
4741b1794f9fb0975eef327e19a8510669555188

SHA256
55e74e6c707bbccac41208498dbdde08e0f9f32c4d444c60987a85cfcc595a17

SHA512
a0d3d2cc52ab304be7e31b3b0dba53b24353147914b543d1d1a335dbd3e8ee5aa8771af0ec35851bcda9d3f0201874e3e5d086cea9260607ca14fe54b5d91c28

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
27106b0cdeedb1a24e2c832b386e0f80

SHA1
4ee8ae92a950c6936bc1d85d003961dd2f3ba8b7

SHA256
e6a42a56fea797a49ba8f4af181b9ad690bf6f5df4e27a01f44c979ada100f13

SHA512
0d45d7213e86820ebb9a2d2c26ef73e07a92926f8d94c46b938e3347ba2416ad4f0899d2615e50b316bb3fb7af124aa7a664411d8b54514de4143f672d41a7e5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
2a33668cfcf1fabf791099887fe7db69

SHA1
66947e72b7071539fa6f5726fc8ab59e099b30e4

SHA256
b2559bbeaf4cdab4f8175ac81e7d193039a553201bf5b95cb15f3c20d29ba2b3

SHA512
3816c4d779946544ca8e49e78d858a87f39158967bd6e655e9d86940c61a894c9e3db9449b424dea2973d955556ea971bbb8f33b2dfc82d214a52aec0bb4bd96

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
496B

MD5
aadae93b8d636d034aee972c3635d7b5

SHA1
d8c1119ed585b5403056f37515b98d32d3275ab9

SHA256
baf498aa585a836559bfdfeba511aa8392d8fac7d57e594062dbad9bbd5c8327

SHA512
0a27888dc32f54cf0f1dff75e1f38813c60a0e0d04c16eb2f0a6bd898455f31f0008aa550b1e36f342527d777e71d9ef3e7e88788366f6b64cfdf8ece6e7bd81

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
ad778abb1d33c1b2a364a3c6bac3d5a9

SHA1
cc5c1084389fcaa58f1ff527e480116bf77ef4e6

SHA256
e9eab49cf8af10113efb233bcd371256886ee3bc459d2da36f308a9b02b46925

SHA512
256bf6e7b3bd37a0dde3d7085d4f13ca99c07b117cea1a093b5596e4edd07cf0a68e5f3147d3402b5c961ee76ab6eb752e298bc8a818edcc21181786f843ac83

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
860B

MD5
31b8464314987340395c941ed83db8fc

SHA1
ab8e96779aba47e3a8b813cbd9bf79b829e8e8c2

SHA256
874287f068dd56c701482424855d607afa0caa756fb18a87966a732a1ed82eb9

SHA512
d09849a6fc618f0efe7d59226b2ef95cd07e8388cc96a5c5996637af456a3b52c034ef8c5a7a4b5395beefc8e086c83b10f33db2c6308dd9a56eec28b80690b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
8db6fb30cbacfb104764eec4df9785e3

SHA1
54f7838a4a343bf9df4902a032726eda5b8502f3

SHA256
7fb9e4cbbc27279d387afd51fd7e85e20b034d34aab250f68800be5823595a7d

SHA512
8e17343f30075a193f410ddb5de6350dd32bff48aebd7f553c1388759c2699ca25da7a43346729dc97e019e843a53b7c0564fa223bee83506618cab67278f0e8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
88da5bd909654ce79e7704956d474c41

SHA1
4d91ada8caae2ef8ad215cde80ab97c49c82d227

SHA256
ab05a8efd1b9c73c5f040cac3ec5f3c363cd759c8ba5ba437af6cb0bbe4c9f3b

SHA512
2e7ede4304f693056292af4c9bf687841bea723630a8142ab0838691343c98a7f14ae0dbf63f3330c356d422e004947838404f6cd1949154384e54a671518319

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
9428c61e830bf78aa8c6dfad4a07da14

SHA1
0e9a9e675edf8bcbf9df4a1e9e8eb2bd8d28e40f

SHA256
c49dcd5e9db39ea3f89e0a191154d2c131bc95a1202bc76cd11b376a0c954503

SHA512
5c771f2113322f5fd2c2ed403e1da9440a566c6a55af7b8598203985c473d30e2cf37b2312dabe3fc2b4226fb09ee07b6c39ce7187abcd45b4a872342a386e11

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
69cf844b39e26c0cc9ce239dd8d2e8e3

SHA1
7d924eb4bca6e1d22d06c70fae8bba673190208c

SHA256
810f7f4da717b3e45a219929d10d9428017cb896413179c3bd4af23b7e1e1001

SHA512
8873130deb7db99469e3854b8fea317a6030c733569e6ec2ebd7b931c2c52180833e475d4eb85f031193e6b84e76379a18e58fb98381751807bb88a35adc9515

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
e6d5bf6d594e4a248820da74e7f83a92

SHA1
b00ebb65b19736496b5fc26a30ea0b49a4eabfc5

SHA256
fe61c00f539f73ec645cc264a4918bb43b31f35ca0ad510d8505a7df2254095e

SHA512
a83b40bb373a8326ff2d79435f04e700e7e3889de8da70f8ef7b02dd37f30111f01565f898dbf736abcb1561836bd5eaf23436e39ac889abf39d36a04efddd49

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
6f2b09259c35a6d1c054a9eb973354d4

SHA1
c850030838e55c8da91d5594fe745846604553f2

SHA256
b5508cd31deeba084cbd4d4faafbf304995ad2e72fd1e95dbf35ea0b1439bb99

SHA512
b16702dccc8360aa43bb77fb7d35dd89b21fa1c3e13d8e65484531e34e3ac9e2dacf6847068eac5c0e8b6d39e3e96086f9dd892217c261e0e077f8fa9a91c226

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
92ebfe78089fe5a22b6b2c8e85ffb171

SHA1
9d830ec73ff3b84c9d9420cb1feb531897898588

SHA256
eae55e6d6dd14440894ab9703931fbc9fb0cb4e55431f4c998cd9c4969fd2e95

SHA512
1a8177bbffac9ae4c749a0328852f138f7e48b84d931219075cf0b4104a874da49790ce7e4fcb011ae4036a7cd68ea7ddafc0503f3d506ca694fb7d3f86e2fd2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
5e6e70ff46532337d87801acc8e372ec

SHA1
3a561544e5a3125547ee91816fae01e5bcd09133

SHA256
2aca6bee0f79a550580cd63e5f9c6eb09feef9dc7413ef34f69a51db78fc9314

SHA512
8c5b7f16c7d21b92d42e436596a0be093911ac65084fc09885f2aaa4ac7ddc5cafabbced744d7fa569bdbd68d5a6aa29869cfbea8b68169091566e14cb30434f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
5126b0f79c294c96138e1d1aff420358

SHA1
effe5a78403083a46f14a11818d64518790d4cc1

SHA256
bc4b4c6e50b426e27310e4c032eee4b6c6b119924db20f9362761e3c1b99b229

SHA512
b885141db541a0958177a48853558675baa5c593ef29eb4f98f861b1dad625ada90e263135666f415aa33bd0526021ba75e78d054ef39b914e75e794aef92419

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
2c2fb3dbf4a506d0ef5addc62842203d

SHA1
e6d9f8a44392075cc91c68aa3ce09574f74059a1

SHA256
9158641b52a0395cf5cbb7187ed9bdda5e6c6f497b6d1e5380ac2c24c5f7b5cb

SHA512
3da625c3e9d3fead7c6173a5348930a2300b2082e0c154be90eee109d492846445a8ea1f4305b600411b9e20e600514162c6eecc362d5fde77d1b0af3f712ce4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
1e13eeca2f9b061d9d506b33fdecb3d0

SHA1
fb7bb8859dfaf367ed78d629712c98a20881aeda

SHA256
173492931d4d8ff322db6b444eb6b024b9e07440f0547cb2c84f9d61315c65e8

SHA512
cc1c9e18d21bb3bc155bcfa47e5e5df32a2ac6bcb596290912c39cbc52d4caa4b1b689b10006e9b8f04efd9d4482ee499135bb68865df2d2b42669c3637a2a29

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
90b2c2a9d6e033c501b51b5a29d351ff

SHA1
972c731f22e75512c1ee514f547e48eb2e57f0d6

SHA256
0a485e92f1a052486d09376b890b9ae1d238bc890b33484e0d6af976ba2383bb

SHA512
a18d60d9d1d7c9a4c3bab3f66d656ec7ff620f92e40aa4679bda7dc724a8e89d1378eaee1a74f2566b6cc3f9880fd4d82049b7e1bc466fd6e9bf490767e7217f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
54218745ef96f8fe937a8c98e4b57984

SHA1
2df5b9ff4ff446c2694a1799a51b1924b00a056c

SHA256
4f5cfb8c28af6029833f45a60926bd38439917a4166913727471cb7aa9dbe9f2

SHA512
1b37c48818031482801cc2120cfa47f2c6c2869d1b3c2e01035da7162a8f75ca82a815e5916ac768ce26228f4c8595074921be2171201a08cac37757c125291f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
131b519245c6fa4a5e444c3f1fe40c58

SHA1
f52c54badf541bb821d7887bd400498d99dbf6b7

SHA256
24f15545d8c4f6f6413674a8fb787e44f98c81da6b45af22e735dc8a26dc153c

SHA512
aa55ccd3488208725909448e24a87948d367c58e4f0fc97dd7a71fdb09c0ac3ef5dc6bca084594e3331b0f5bd45c12e1cc1f56d249b100b55c4d6f978ab2cc20

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
d65ba0f8fca0e636228ba901824f5a94

SHA1
5e3aaff17f9e5a541cb4dae311672aa448f561a3

SHA256
260d611c091a97cba104ccb97b863550a5e9ffd54f93d2c6f8cb5f39bf626375

SHA512
e8d148156625059863ef301199399603b4c297450eebaef90e3279a58bc32f1bdb8f19b2a8e7e04cceccbc32fc101e71a1db22b296b1be78b0e10297a5c1d969

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
2237cad3b1a7d80f0ed8fc03ef2b4fc9

SHA1
415b3d9425dc1c43a5f6e072b183eba90ce26ee1

SHA256
e11623f93adbd7d159acb3342108b8bd37e05d3245bb54bb1df189fc057994ef

SHA512
1b9ab59f91324fd8e171fbe8175535a6ccd6488e1088cdcefb61bd4d11e59188cf4f03f0d8a179cf4301d9b54b6021fcaa66d81f31835a79f8d654db581dfd8e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
ac0315f77a2fce82452b0f9c8d4534c6

SHA1
e128c2926a4c761cc38d5b9d7509ca358d13392a

SHA256
b4bd2545f0dafe632a1fdec3285f25bcb1d76f6df1a63a786c126a5f894088b3

SHA512
31e0db7f114f9f2b6f45567ad8e6bda2abfacd773245bc169cbfb4d7198870f586281bc8f02f5e7fb00b98adf3ce2c4cde518a200f1e4aba4754aa4d7212c1fa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
aac6ad866079902cbeefecb9afa0d8cd

SHA1
e5a402f1d6126d0bef36276ee777bf7f24e55bb3

SHA256
a137b99bbd2b06925669fe596853557724e3400975efd7ed58d30c4bfc044003

SHA512
85c68571aa7d1b636bb66d8531dceede027532be2641e7cd49fe48e692ff3531273d13811ae117727a4d061e79681870e1720e2ce657a058eab9de9385c66149

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
33173a007a956abbaade7db6cf09a448

SHA1
f75f1e78e2f189c6f871f15a432d0f69e0a52ffa

SHA256
517cedd0fcb2c044d615f2fce0120da79763cd88f49a0879a4cffe1d376436ca

SHA512
a01a6c93c148801c4b483eeacd647b6018540224256f9fb449049189eea70e796b032cbc9ec3d4d8128e4b68a911e99e15ea0108e23d67d8b06703199d69dea6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
795ca5212c46dcf154882ac13cb00716

SHA1
38623b7a27b57435b1f94c31550e56f7647e88de

SHA256
6d95bc15e0c42065cfa11e419f536c8a4bf1f35ef8e62c286686c1e69fb3aaa0

SHA512
9b23e9a83669034cc9332c570d7149bc50e947541d8a4b3e385403bf44216a8c16d7b805dc25003ca56235f0b01292594143cc78a6123f88009e6d3cde0c26ba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
059e4725c45839c0dfd2d562ec237109

SHA1
dd46a90ea8382ac37d57bfd892bdd052ec4ce25a

SHA256
face03b1e575d16b7d17bf7227fe7621c404bcfa3cd94595f6df392b936ea034

SHA512
b2765533fca0acf87216fac693642a74e098fa9eed9a2e138582e2a410fde194fd12e36c1c6ed982fa53e9e7a9bb02a3b3396802f33d99404ba743f9c8290ff6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
65056c95e51313e2862de7cf2bebc962

SHA1
91123ff55e906187cfc90ad3e31c31e9a2f0f05b

SHA256
c38f38920f8b63b819f688404c0cf45739819a260117d1955ab3161c7144621c

SHA512
50d734fddf9872a6e57919a5a5e57a5e31ed91304ee74258e0c80eb7225d656a8e4ba33e170e2bb0d60e6c3b850f861e93bd18b936a44200106aea4d28edb684

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
871b55b60ff36b3c6ef2438550378b0f

SHA1
06ad4f836d3c29c41830e27b573433f681e07f61

SHA256
02c4fd93dc3c7f78dd303380a568a8795f9594f06a540b34def8205ec469d7dc

SHA512
4641a8c1d1503308fe863c2af75f816acd2e208f20875cfd8d29d2c87af4f125e2f14333b8c2a937f4d4c06e4662e861725eefa6ed7cfe53263f37480b8b2b41

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
aacca541a21d39f7385742b563397fbb

SHA1
0e9e6bfa23ec9868768ecd823fe34a0d53e351b9

SHA256
185f16c01df73e52c5bee06e07ecd8178dd4db3fb1a47010d76d21934bf639ea

SHA512
4df05e0cfd696fa95ff8501007a4abaa0adb8d6826f524fdebbecd7ea4d3355ccd03d3e8c531e82af63a9c8a66228bccc6f528f3d29976e5369b93e067a91e9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
926903cb5c5f8c481b018057390ae8f4

SHA1
cc59ffae178854088aa54f6f85422d2d0c791925

SHA256
53e1427c4cfd8546a9fb9f2e21c9d9134e87a0d7a7dfd290e0ff16c536e619a2

SHA512
b1ccd1fec7a93f8ee835e3294178fe66779e172f023cf5619da43f75b1bdf5f39572c8943bf865d59cf52967d2fc8de4c08ba7a6a863a15af82808aceb2e0bf5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
8e17e7d53d3c505d93ec9b1f47bb99e2

SHA1
ffe0ffd72b2d4018550187e5828997d236de86da

SHA256
9f70cde6119b9ac60481467804b96efe0e35455260a5f1b55448da9efec34ec2

SHA512
1fa0af101cc84ad66025de7126cbb68e8828e3513f6587c14c166bdd1500bff020e34f54b2ed426b8e08d80946225169ce05bcbff3083a3c036228944fe8468a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
593dec7b3bae23b3e6e1bbb9edb76972

SHA1
4b428247e7c17c8aa07114d1f12b84235c9c3f96

SHA256
6a809378eb8fab9b73010555875d41b8c1ae741deb8a0d71e3b978044572a38a

SHA512
95590e66d7afe65c8636cc5db1f78c5e9d4e7c4e6dc3bd8289461419a8fbbda21ade351060868a759d9a413aac6609bda0cbfd6c97fa67a6e02262de24c64c7c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
d63bcffbe53aed53d484682f8216d3c6

SHA1
00a9ebb774fcf7fc0c214518f8a9b4de94a9d9f6

SHA256
055d74717a3f8bb1383813e71a8970ec93da69c280ff966e764cda18d868e6f7

SHA512
c1774e81c6cb2baaaca8ccf1119370394c639446dcf78544bb97f227b3ae30e49a758cc02072d0529810012bc235fbb030785bc02dce3e624b8e1a06b70876c8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
868B

MD5
c6eb105dea2778db43823fb8edd104fe

SHA1
940986a80d6c8a39e21351bd0323823d3028ddfd

SHA256
934d05c9c57d62e7bbfcf4c3efed8ce4d2944df5c743391a9352912e660d36e4

SHA512
317c703c0678be07a5e3761b357a5e1ae6f316423523a78e785f452acd5112f6cc55651bcaa97cb387272bbde93589abc49512d854dfe802b74ff361f720a867

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
5dccbdee2eb5cc71fa17d2ac14b3c30a

SHA1
9358b21027315d92cc3e10929d3f9bc403c28944

SHA256
2cb27d97fe9a76d814a3c34cadd36a0cde2cf3fa1570ba60d8860b53e04ae467

SHA512
8e518fcbb94c48d83b238481fa4ba5cffb87e354e5536b33efdb3d412f049fd703a9dc9eb92e2eabf16623e5013c0ec29ef7e2b9249a46e477c22c3193934e8b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
4525f9bd673a57f711e172223b4d1fa7

SHA1
a563213458e1867fe6fd69006b67da0ad81e27c5

SHA256
0d4c07bb02a56d60e991acc6392732eea14379037b2878da7a149072d8d9a792

SHA512
55b73dd8be0c8129a6fe6a2a4d6fcec13f0bef0a3c89db00f020a1dde709d8fdced46b3a2ea46a1c24c46826e5f4c57102f18e98d1997034d275e8c7fee4237e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
a59d39b1f6617a4c1fd5e97675eeaef1

SHA1
f56dfaef19bb313a343489305cb60e6748e2684e

SHA256
fbcb1ec46ed9a4f17ed67405a7e113460449d29e7e46312daef50c8654610a80

SHA512
a75ae03909d825bf9407ada80b84e8e1f507a34e31d3c7f14a1af2cf6dcbc7f0e88f42d547f6334ba4ec0d3e40960e9e455076fc10ff96f79c9efdf80897571c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
e1bef1a27654612d7cc5c2fbfaa80a40

SHA1
e558be1ce39bd345d2459e16141f1ae9061b905c

SHA256
9868b4b36997a53fc93f32e2d3cf2210ec95b0a9c13b7656636e5c3fff03487b

SHA512
760780c32f080a57daeac35a297ca9195bd9abff946c3af5557b8562944a37ce17b783f55b30ec0c85f54d95d31896cbb4f15064d2bdc55fd78d0eca5a2ff38f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
1b966f72a4ec22e505333e25399237ca

SHA1
f8e501779a063e78543101782c2264223c5ccd40

SHA256
8dd419f4b2232e78ba32d44069af1d10d2f3d542d05e5b5a7b274b3750f9d928

SHA512
7b83af2c14a1569ff7964b632e5a6e4a1db2334d39cf3f3a073a2e8cdfabe33caf17b92364be8e990825a7a30813dc6bdd5fcdb5d7a9d845f8b307038df41554

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
ac9920e5217b8206d7d81b2aa58e3849

SHA1
312c9e91be085e4fc9c48edda662f9258bd6657f

SHA256
28d5f914f96ce1595522f9a1ec3acc30b793afc3b27974af37122da933376207

SHA512
a460252db7e8ea7d4450f1c2a1b7c27af5de5333af15e0e734a968305cd05a2b16d13464455e62ec4c92fe1d1d7564c3119320b831283421f0ff9d8b155d3ed1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
c1d6cffb23b1f2b942d383d7ca079681

SHA1
dfb3c72ffa3f1cc100d71a0601a6378de3ecc946

SHA256
321a95b7e5c0714f1eb66b8c8d955ae659b516ef56b02e7bbb8132c33e35e409

SHA512
5c35f3c21487630625bf089770af8dbdf21bd8ce1de11d2e2396db86008bcba269a36b7b4bbd6b0f3bc1d76a992ab64d642470eca81939ccf49bec0ebbbb37b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
2583a3444397c1de01d9ad6242209e29

SHA1
1ca50fcf867ac6d058d0ba52c985f9af201869e1

SHA256
5b2fa8015086c63c7fc3519a318373a1a0fd46bf167addb57d03d3428d944d5c

SHA512
685be398e1dc78c0d8fe3852d2fbc484ccef0158d96267d3bca25b23d4da6b7bd1b3e2a41a5df98bdb45ab310e0fda19180f2767222cc4bf4fed2b4c8f792f04

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
24e7f002012d2b80693bce1b993d8fe4

SHA1
97bf07e08ceca726c3c3e0203c7fb239207fa194

SHA256
a37dd8ee4ec0ccce1d59182851ec2a906de1fd06a00bbeed478be60d0337bbc3

SHA512
c5190d63d7d2472747786873f1521a7aad7d964fa57f848bcb372928f661340270b7e9f1f5f9c53f7e167b7e3aa3e64aa20b89459b0f7c33984bff8c76982318

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
072537f5a7d56de836f0069d9554d39d

SHA1
496327a92f01c53c988dd7727b63caa6c3b13aa5

SHA256
567e79bdb517f881d2451c5a8f4f2142d95f3e14a92f0e3d11b3d22b5e9fcfbd

SHA512
081f9060bc6c67ad2ad8ccc44545ac4d0f8f0d491d9485644e36314069e9ee1c5b7058cdbd09781f27041bd3e605042f723a6f113a1a7fc094339de637146438

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
775c8848d7f5ebd47ac26b7156fdb705

SHA1
e166a67cbdcc96cf7bd175a8bdb164c59ccce34e

SHA256
304901bc0621af131548691583f64adadba30c515122ec6146e4145b332edd0a

SHA512
2854b36df1b0c393c9c7ac7b5a5431d9b2e2a151e683e7e817119f7fb4dbdb705813e03585d07d67e2fc5178fdfdeda1f60435d1d4edbc75920c8a2695bc219e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58bcf2.TMP

Filesize
874B

MD5
5602c6fbeeba356b3424f4e574fe5ff0

SHA1
45d7a6532ed06186eda5504e04b1ca5fd5a9f9d1

SHA256
60e42f61afeecf73da2527ac91335c0b61baa71b16ac859853fb28e519fb2873

SHA512
d740640eaedaf9eaa940b87bf0e1ed1c3a01abeb19bfde19f479299ffb253b19e9f4919ecb2a57024568b05214be84c0ead86ecaea7c6175b44cc627b07bd9ae

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
407f8926b66a1495415491f3f058da4c

SHA1
ea0689a05a1e207a7416d8cf212fc82a0748f76e

SHA256
b1f234462aa707a0991dc539a3169281933680113900c660531fa08e08ce3b2e

SHA512
5497489a43ee1586b2e49f3d5af82cf4dd021837ebe20c09164c2aaecb22f64b63081d7f89035aa718634be5e4d11721806735f9f4ac4ab8ce41465288d83275

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
0ef152cd6a2ac82f84fae91dcecac2a4

SHA1
512f6463d74b96219315b95b075ad3a7c9c5c84c

SHA256
486bedf7528996bc0a207191a81ae970197c2fcbb20f26d2d2d6480a400e6ca0

SHA512
7666f5c6de235c6c491a899c98c3445bcb91dfd45941cdccd5b080c7bc60d638953117871aff2a8df1dd724d70051dd6a2e8211ee5b89599cd786b5a903df52f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
0ea9163cab5bee758280e449052c196c

SHA1
108674a2270e256ffeb7a12f41a4696fe99bb7da

SHA256
8dabfbcd7924cfb4bc25e85bb6db622b1a9e2bbf7472bb1fe128a5d2f93f7796

SHA512
1f8dd78b3d4ae67c1cbc00d6b0e6abacbd117b90345dc25fa36757b9d632c8580e508d055bf39ca67f5ba7327125b21ed54d614dbc50e9bca60e437c84a30734

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
17814f62049dedabdfc47c2f5edc8eeb

SHA1
45fd32b53d37405163c974504e58214a3d963e4d

SHA256
15517f17e469768f953ac40b3035e4ea533c5bc58db0aa682a65ae47b4e6eae5

SHA512
f27c74e2b4dbe34aeed6d3aa52c250116640eaec8fe68dc93f521c3fbc980567a38fcdcd26fb78dc17f4ce18d2bbb928bec965b0d3eaf1b5a3de5757ac4e2c91

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
91b3f7e999e06aa43383472fd28c1c46

SHA1
2d81c6741aebe0c5a0e8f1e55f222270e6c7290f

SHA256
51342ef872b0c7877d8a29117aac66e882056ed392d94104fbd19292843b6841

SHA512
d0f8b1f44b9d826e4df9b7bbfe2883ed404d6e240a764b2bd0af47bb865e1c3bc543810e0f0de058efa29e3d352ae4992e188d0957729e1ad43345a0705cdf03

Download Submit
C:\Users\Admin\AppData\Local\Temp\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\.ba1\logo.png

Filesize
1KB

MD5
d6bd210f227442b3362493d046cea233

SHA1
ff286ac8370fc655aea0ef35e9cf0bfcb6d698de

SHA256
335a256d4779ec5dcf283d007fb56fd8211bbcaf47dcd70fe60ded6a112744ef

SHA512
464aaab9e08de610ad34b97d4076e92dc04c2cdc6669f60bfc50f0f9ce5d71c31b8943bd84cee1a04fb9ab5bbed3442bd41d9cb21a0dd170ea97c463e1ce2b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\{74d0e5db-b326-4dae-a6b2-445b9de1836e}\.ba1\wixstdba.dll

Filesize
118KB

MD5
4d20a950a3571d11236482754b4a8e76

SHA1
e68bd784ac143e206d52ecaf54a7e3b8d4d75c9c

SHA256
a9295ad4e909f979e2b6cb2b2495c3d35c8517e689cd64a918c690e17b49078b

SHA512
8b9243d1f9edbcbd6bdaf6874dc69c806bb29e909bd733781fde8ac80ca3fff574d786ca903871d1e856e73fd58403bebb58c9f23083ea7cd749ba3e890af3d2

Download Submit
C:\Users\Admin\AppData\Roaming\tor\cached-microdescs.new

Filesize
3.5MB

MD5
95ab176af58dbd37344de85d9f6c709d

SHA1
af933c66dd7c08322b1b348680ac2ba22c78ac07

SHA256
3a6fa30c6f5a168177ddc2d35699714c91f2e554fea6c5b25e01959d993e3cfb

SHA512
01667593d9c0e290172d3f3856bab8b06b069fa1eb94cd84190bb12a9497f2861c9f07a8e55c98b4d2115056ed1ebd9dc7953b281b919fc091931fc7f369059e

Download Submit
C:\Users\Admin\Downloads\@Please_Read_Me@.txt

Filesize
933B

MD5
7e6b6da7c61fcb66f3f30166871def5b

SHA1
00f699cf9bbc0308f6e101283eca15a7c566d4f9

SHA256
4a25d98c121bb3bd5b54e0b6a5348f7b09966bffeec30776e5a731813f05d49e

SHA512
e5a56137f325904e0c7de1d0df38745f733652214f0cdb6ef173fa0743a334f95bed274df79469e270c9208e6bdc2e6251ef0cdd81af20fa1897929663e2c7d3

Download Submit
C:\Users\Admin\Downloads\@WanaDecryptor@.exe

Filesize
240KB

MD5
7bf2b57f2a205768755c07f238fb32cc

SHA1
45356a9dd616ed7161a3b9192e2f318d0ab5ad10

SHA256
b9c5d4339809e0ad9a00d4d3dd26fdf44a32819a54abf846bb9b560d81391c25

SHA512
91a39e919296cb5c6eccba710b780519d90035175aa460ec6dbe631324e5e5753bd8d87f395b5481bcd7e1ad623b31a34382d81faae06bef60ec28b49c3122a9

Download Submit
C:\Users\Admin\Downloads\NoEscape.exe.zip

Filesize
13.5MB

MD5
660708319a500f1865fa9d2fadfa712d

SHA1
b2ae3aef17095ab26410e0f1792a379a4a2966f8

SHA256
542c2e1064be8cd8393602f63b793e9d34eb81b1090a3c80623777f17fa25c6c

SHA512
18f10a71dc0af70494554b400bdf09d43e1cb7e93f9c1e7470ee4c76cd46cb4fbf990354bbbd3b89c9b9bda38ad44868e1087fd75a7692ad889b14e7e1a20517

Download Submit
C:\Users\Admin\Downloads\TaskData\Tor\tor.exe

Filesize
3.0MB

MD5
fe7eb54691ad6e6af77f8a9a0b6de26d

SHA1
53912d33bec3375153b7e4e68b78d66dab62671a

SHA256
e48673680746fbe027e8982f62a83c298d6fb46ad9243de8e79b7e5a24dcd4eb

SHA512
8ac6dc5bb016afc869fcbb713f6a14d3692e866b94f4f1ee83b09a7506a8cb58768bd47e081cf6e97b2dacf9f9a6a8ca240d7d20d0b67dbd33238cc861deae8f

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 411345.crdownload

Filesize
3.4MB

MD5
84c82835a5d21bbcf75a61706d8ab549

SHA1
5ff465afaabcbf0150d1a3ab2c2e74f3a4426467

SHA256
ed01ebfbc9eb5bbea545af4d01bf5f1071661840480439c6e5babe8e080e41aa

SHA512
90723a50c20ba3643d625595fd6be8dcf88d70ff7f4b4719a88f055d5b3149a4231018ea30d375171507a147e59f73478c0c27948590794554d031e7d54b7244

Download Submit
C:\Users\Admin\Downloads\c.wnry

Filesize
780B

MD5
93f33b83f1f263e2419006d6026e7bc1

SHA1
1a4b36c56430a56af2e0ecabd754bf00067ce488

SHA256
ef0ed0b717d1b956eb6c42ba1f4fd2283cf7c8416bed0afd1e8805ee0502f2b4

SHA512
45bdd1a9a3118ee4d3469ee65a7a8fdb0f9315ca417821db058028ffb0ed145209f975232a9e64aba1c02b9664c854232221eb041d09231c330ae510f638afac

Download Submit
C:\Users\Admin\Downloads\msg\m_filipino.wnry

Filesize
36KB

MD5
08b9e69b57e4c9b966664f8e1c27ab09

SHA1
2da1025bbbfb3cd308070765fc0893a48e5a85fa

SHA256
d8489f8c16318e524b45de8b35d7e2c3cd8ed4821c136f12f5ef3c9fc3321324

SHA512
966b5ed68be6b5ccd46e0de1fa868cfe5432d9bf82e1e2f6eb99b2aef3c92f88d96f4f4eec5e16381b9c6db80a68071e7124ca1474d664bdd77e1817ec600cb4

Download Submit
C:\Users\Admin\Downloads\msg\m_finnish.wnry

Filesize
37KB

MD5
35c2f97eea8819b1caebd23fee732d8f

SHA1
e354d1cc43d6a39d9732adea5d3b0f57284255d2

SHA256
1adfee058b98206cb4fbe1a46d3ed62a11e1dee2c7ff521c1eef7c706e6a700e

SHA512
908149a6f5238fcccd86f7c374986d486590a0991ef5243f0cd9e63cc8e208158a9a812665233b09c3a478233d30f21e3d355b94f36b83644795556f147345bf

Download Submit
C:\Users\Admin\Downloads\t.wnry

Filesize
64KB

MD5
5dcaac857e695a65f5c3ef1441a73a8f

SHA1
7b10aaeee05e7a1efb43d9f837e9356ad55c07dd

SHA256
97ebce49b14c46bebc9ec2448d00e1e397123b256e2be9eba5140688e7bc0ae6

SHA512
06eb5e49d19b71a99770d1b11a5bb64a54bf3352f36e39a153469e54205075c203b08128dc2317259db206ab5323bdd93aaa252a066f57fb5c52ff28deedb5e2

Download Submit
C:\Users\Public\Desktop\@WanaDecryptor@.bmp

Filesize
1.4MB

MD5
c17170262312f3be7027bc2ca825bf0c

SHA1
f19eceda82973239a1fdc5826bce7691e5dcb4fb

SHA256
d5e0e8694ddc0548d8e6b87c83d50f4ab85c1debadb106d6a6a794c3e746f4fa

SHA512
c6160fd03ad659c8dd9cf2a83f9fdcd34f2db4f8f27f33c5afd52aced49dfa9ce4909211c221a0479dbbb6e6c985385557c495fc04d3400ff21a0fbbae42ee7c

Download Submit
memory/2120-799-0x0000000000400000-0x00000000005CC000-memory.dmp

Filesize
1.8MB

Download
memory/2120-800-0x0000000000400000-0x00000000005CC000-memory.dmp

Filesize
1.8MB

Download
memory/2120-833-0x0000000000400000-0x00000000005CC000-memory.dmp

Filesize
1.8MB

Download
memory/3304-2524-0x0000000010000000-0x0000000010010000-memory.dmp

Filesize
64KB

Download
memory/4280-4086-0x0000000073F40000-0x000000007415C000-memory.dmp

Filesize
2.1MB

Download
memory/4280-4103-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4128-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4132-0x0000000073F40000-0x000000007415C000-memory.dmp

Filesize
2.1MB

Download
memory/4280-4087-0x0000000073EB0000-0x0000000073F32000-memory.dmp

Filesize
520KB

Download
memory/4280-4161-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4165-0x0000000073F40000-0x000000007415C000-memory.dmp

Filesize
2.1MB

Download
memory/4280-4207-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4211-0x0000000073F40000-0x000000007415C000-memory.dmp

Filesize
2.1MB

Download
memory/4280-4216-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4083-0x0000000074200000-0x0000000074282000-memory.dmp

Filesize
520KB

Download
memory/4280-4085-0x0000000074160000-0x00000000741D7000-memory.dmp

Filesize
476KB

Download
memory/4280-4088-0x0000000073E80000-0x0000000073EA2000-memory.dmp

Filesize
136KB

Download
memory/4280-4082-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4084-0x00000000741E0000-0x00000000741FC000-memory.dmp

Filesize
112KB

Download
memory/4280-4079-0x0000000000390000-0x000000000068E000-memory.dmp

Filesize
3.0MB

Download
memory/4280-4077-0x0000000073EB0000-0x0000000073F32000-memory.dmp

Filesize
520KB

Download
memory/4280-4078-0x0000000073E80000-0x0000000073EA2000-memory.dmp

Filesize
136KB

Download
memory/4280-4076-0x0000000073F40000-0x000000007415C000-memory.dmp

Filesize
2.1MB

Download
memory/4280-4075-0x0000000074200000-0x0000000074282000-memory.dmp

Filesize
520KB

Download

Resubmissions

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request