cryptolocker | hxxps://github[.]com/AHXR/ghost

Analysis

max time kernel
123s
max time network
124s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
20/12/2024, 22:45 UTC

Sharing

Copy URL

Twitter E-mail

Reason

Machine shutdown

Report Analysis Logs

General

Target

https://github.com/AHXR/ghost

Score

10^/10

cryptolocker discovery persistence ransomware

Malware Config

Signatures

CryptoLocker
Ransomware family with multiple variants.
ransomware cryptolocker
Cryptolocker family
cryptolocker
Downloads MZ/PE file

Executes dropped EXE 7 IoCs

pid	Process
764	CryptoLocker.exe
5768	{34184A33-0407-212E-3320-09040709E2C2}.exe
5868	{34184A33-0407-212E-3320-09040709E2C2}.exe
3280	CryptoLocker.exe
4484	CryptoLocker.exe
4376	CryptoLocker.exe
5144	CryptoLocker.exe

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-4050598569-1597076380-177084960-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\CryptoLocker = "C:\\Users\\Admin\\AppData\\Roaming\\{34184A33-0407-212E-3320-09040709E2C2}.exe"	{34184A33-0407-212E-3320-09040709E2C2}.exe

Legitimate hosting services abused for malware hosting/C2 1 TTPs 5 IoCs

Web Service

T1102

flow	ioc
32	camo.githubusercontent.com
33	camo.githubusercontent.com
34	camo.githubusercontent.com
141	raw.githubusercontent.com
142	raw.githubusercontent.com

Browser Information Discovery 1 TTPs
Enumerate browser information.
discovery

Browser Information Discovery
T1217

System Location Discovery: System Language Discovery 1 TTPs 7 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	{34184A33-0407-212E-3320-09040709E2C2}.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	{34184A33-0407-212E-3320-09040709E2C2}.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	CryptoLocker.exe

Enumerates system info in registry 2 TTPs 3 IoCs

Query Registry

T1012

System Information Discovery

T1082

description	ioc	Process
Key opened	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer	msedge.exe
Key value queried	\REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName	msedge.exe

Modifies data under HKEY_USERS 15 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "218"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040"	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89"	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1"	LogonUI.exe
Set value (int)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1"	LogonUI.exe
Set value (data)	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00	LogonUI.exe
Key created	\REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History	LogonUI.exe

Modifies registry class 1 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-4050598569-1597076380-177084960-1000_Classes\Local Settings	msedge.exe

NTFS ADS 4 IoCs

description	ioc	Process
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 373104.crdownload:SmartScreen	msedge.exe
File created	C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe\:SmartScreen:$DATA	CryptoLocker.exe
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 615462.crdownload:SmartScreen	msedge.exe
File opened for modification	C:\Users\Admin\Downloads\Unconfirmed 869552.crdownload:SmartScreen	msedge.exe

Suspicious behavior: EnumeratesProcesses 10 IoCs

pid	Process
4556	msedge.exe
4556	msedge.exe
5088	msedge.exe
5088	msedge.exe
4724	identity_helper.exe
4724	identity_helper.exe
2268	msedge.exe
2268	msedge.exe
4452	msedge.exe
4452	msedge.exe

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 16 IoCs

pid	Process
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe

Suspicious use of FindShellTrayWindow 52 IoCs

pid	Process
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe

Suspicious use of SendNotifyMessage 24 IoCs

pid	Process
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe
5088	msedge.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2076	LogonUI.exe

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 5088 wrote to memory of 2544	5088	msedge.exe	82
PID 5088 wrote to memory of 2544	5088	msedge.exe	82
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4280	5088	msedge.exe	83
PID 5088 wrote to memory of 4556	5088	msedge.exe	84
PID 5088 wrote to memory of 4556	5088	msedge.exe	84
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85
PID 5088 wrote to memory of 4388	5088	msedge.exe	85

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument https://github.com/AHXR/ghost
1⤵
- Enumerates system info in registry
- Modifies registry class
- NTFS ADS
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:5088
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd407346f8,0x7ffd40734708,0x7ffd40734718
  2⤵
  PID:2544
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2120 /prefetch:2
  2⤵
  PID:4280
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2180 /prefetch:3
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4556
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2668 /prefetch:8
  2⤵
  PID:4388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:1
  2⤵
  PID:4852
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
  2⤵
  PID:4440
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5344 /prefetch:8
  2⤵
  PID:4504
- C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5344 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4724
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
  2⤵
  PID:2388
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5020 /prefetch:1
  2⤵
  PID:1948
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5008 /prefetch:1
  2⤵
  PID:2932
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5928 /prefetch:1
  2⤵
  PID:1112
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2384 /prefetch:1
  2⤵
  PID:2484
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5924 /prefetch:1
  2⤵
  PID:3084
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3656 /prefetch:1
  2⤵
  PID:3252
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1
  2⤵
  PID:6104
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5528 /prefetch:1
  2⤵
  PID:5180
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1
  2⤵
  PID:4780
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3904 /prefetch:1
  2⤵
  PID:5552
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3568 /prefetch:1
  2⤵
  PID:5572
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=3680 /prefetch:8
  2⤵
  PID:3040
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6408 /prefetch:1
  2⤵
  PID:5460
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5728 /prefetch:8
  2⤵
  PID:3272
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5940 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:2268
- C:\Users\Admin\Downloads\CryptoLocker.exe
  "C:\Users\Admin\Downloads\CryptoLocker.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  - NTFS ADS
  PID:764
- - C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe
    "C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe" "/rC:\Users\Admin\Downloads\CryptoLocker.exe"
    3⤵
    - Executes dropped EXE
    - Adds Run key to start application
    - System Location Discovery: System Language Discovery
    PID:5768
  - - C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe
      "C:\Users\Admin\AppData\Roaming\{34184A33-0407-212E-3320-09040709E2C2}.exe" /w0000021C
      4⤵
      Executes dropped EXE
      System Location Discovery: System Language Discovery
      PID:5868
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5884 /prefetch:1
  2⤵
  PID:2124
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5076 /prefetch:8
  2⤵
  PID:6028
- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2080,3917157070599466624,14788274330047663976,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6208 /prefetch:8
  2⤵
  - Suspicious behavior: EnumeratesProcesses
  PID:4452
- C:\Users\Admin\Downloads\CryptoLocker.exe
  "C:\Users\Admin\Downloads\CryptoLocker.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:3280
- C:\Users\Admin\Downloads\CryptoLocker.exe
  "C:\Users\Admin\Downloads\CryptoLocker.exe"
  2⤵
  - Executes dropped EXE
  - System Location Discovery: System Language Discovery
  PID:4484

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:4072

C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
1⤵
PID:2388

C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
1⤵
PID:4104

C:\Users\Admin\Downloads\CryptoLocker.exe
"C:\Users\Admin\Downloads\CryptoLocker.exe"
1⤵
- Executes dropped EXE
- System Location Discovery: System Language Discovery
PID:4376

C:\Users\Admin\Downloads\CryptoLocker.exe
"C:\Users\Admin\Downloads\CryptoLocker.exe"
1⤵
- Executes dropped EXE
- System Location Discovery: System Language Discovery
PID:5144

C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa3953855 /state1:0x41c64e6d
1⤵
- Modifies data under HKEY_USERS
- Suspicious use of SetWindowsHookEx
PID:2076

Network

DNS

github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.com

IN A

Response

github.com

IN A

20.26.156.215
GET

https://github.com/AHXR/ghost

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:08 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"1607eb17a9a145b9fdd3191603ea9271"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
set-cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1129827031.1734734768; Path=/; Domain=github.com; Expires=Sat, 20 Dec 2025 22:46:08 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Sat, 20 Dec 2025 22:46:08 GMT; HttpOnly; Secure; SameSite=Lax
accept-ranges: bytes
x-github-request-id: F841:3206F1:20F37C7:2611DC1:6765F3B0
GET

https://github.com/AHXR/ghost/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: F841:3206F1:20F387C:2611E9C:6765F3B2
GET

https://github.com/AHXR/ghost/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F841:3206F1:20F387C:2611E9B:6765F3B0
GET

https://github.com/AHXR/ghost/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F841:3206F1:20F387C:2611E9D:6765F3B2
GET

https://github.com/AHXR/ghost/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a8c2e17828e387838d9f8dc3e377315b"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 565
x-github-request-id: F841:3206F1:20F388A:2611EAF:6765F3B2
GET

https://github.com/AHXR/ghost/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"b39961f70e1f88ca5cbab29827a85ef3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: F841:3206F1:20F388B:2611EB1:6765F3B2
GET

https://github.com/AHXR/ghost/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"9b4f6b98ffcb48cb5eddb1e4d0f4f55b"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 394
x-github-request-id: F841:3206F1:20F388A:2611EAC:6765F3B2
GET

https://github.com/AHXR/ghost/overview-files/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/overview-files/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"c8cdcea2e380527b8daaabedc40460cc"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 79
x-github-request-id: F841:3206F1:20F388A:2611EAE:6765F3B2
GET

https://github.com/AHXR/ghost/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"66aa3481179e0e8031e2ed4742406bc5"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 14927
x-github-request-id: F841:3206F1:20F388A:2611EB0:6765F3B2
GET

https://github.com/manifest.json

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /manifest.json HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: manifest
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:04 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=604800, public
etag: W/"c75e05794d72230a695e880f1a6c83a4"
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-type: application/manifest+json; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
content-length: 474
x-github-request-id: F841:3206F1:20F38A1:2611EC0:6765F3B2
GET

https://github.com/AHXR/ghost/releases/tag/1.0.4

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/releases/tag/1.0.4 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
turbo-frame: repo-content-turbo-frame
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:17 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"7a16f84bb1d9a60acae68b598472e95a"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: a53a47569f47b43481f8c5743f07e65ec3053bf04fc76adef5bd42d3a8d70ccb
accept-ranges: bytes
x-github-request-id: F841:3206F1:20F3B3D:26121E2:6765F3B2
GET

https://github.com/AHXR/ghost/releases/expanded_assets/1.0.4

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/releases/expanded_assets/1.0.4 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:17 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"5856e7b60fc04939eb5969927ec38df6"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: a53a47569f47b43481f8c5743f07e65ec3053bf04fc76adef5bd42d3a8d70ccb
accept-ranges: bytes
content-length: 882
x-github-request-id: F841:3206F1:20F3B69:2612220:6765F3B9
GET

https://github.com/AHXR/ghost/releases/tag/1.0.4

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /AHXR/ghost/releases/tag/1.0.4 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC
if-none-match: W/"7a16f84bb1d9a60acae68b598472e95a"

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:28 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"a0bfd2cfcbdcfc8f7606742e57c97f73"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F841:3206F1:20F3F9D:2612728:6765F3B9
GET

https://github.com/search?q=virus%20download&type=repositories

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /search?q=virus%20download&type=repositories HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml, application/json
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
x-react-app-name: rails
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 429

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:41 GMT
content-type: text/html
retry-after: 3600
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-length: 9270
x-github-request-id: F841:3206F1:20F448F:2612D29:6765F3C4
GET

https://github.com/search?q=virus%20download&type=repositories

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /search?q=virus%20download&type=repositories HTTP/2.0
host: github.com
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 429

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:41 GMT
content-type: text/html
retry-after: 3600
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-length: 9270
x-github-request-id: F841:3206F1:20F44A6:2612D47:6765F3D1
GET

https://github.com/favicon.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /favicon.ico HTTP/2.0
host: github.com
pragma: no-cache
cache-control: no-cache
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:41 GMT
content-type: image/x-icon
last-modified: Fri, 20 Dec 2024 22:02:38 GMT
etag: W/"6765e97e-1976"
expires: Mon, 18 Dec 2034 22:46:41 GMT
cache-control: max-age=315360000
vary: Accept-Encoding, Accept, X-Requested-With
x-frame-options: DENY
content-encoding: gzip
accept-ranges: bytes
content-length: 1219
x-github-request-id: F841:3206F1:20F44B5:2612D51:6765F3D1
GET

https://github.com/search?q=virus%20download&type=repositories

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /search?q=virus%20download&type=repositories HTTP/2.0
host: github.com
cache-control: max-age=0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 429

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:46 GMT
content-type: text/html
retry-after: 3600
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
vary: Accept-Encoding, Accept, X-Requested-With
content-length: 9270
x-github-request-id: F841:3206F1:20F463D:2612F38:6765F3D1
GET

https://github.com/favicon.ico

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /favicon.ico HTTP/2.0
host: github.com
pragma: no-cache
cache-control: no-cache
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:41 GMT
content-type: image/x-icon
last-modified: Fri, 20 Dec 2024 22:02:38 GMT
etag: W/"6765e97e-1976"
expires: Mon, 18 Dec 2034 22:46:41 GMT
cache-control: max-age=315360000
vary: Accept-Encoding, Accept, X-Requested-With
x-frame-options: DENY
content-encoding: gzip
accept-ranges: bytes
content-length: 1219
x-github-request-id: F841:3206F1:20F4646:2612F45:6765F3D6
GET

https://github.com/Da2dalus/The-MALWARE-Repo

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: document
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:55 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"e8ccb79e5bba0602d72cba30db0fc3aa"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
x-github-request-id: F841:3206F1:20F49BB:261336F:6765F3D6
GET

https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/security/overall-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:55 GMT
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
x-github-request-id: F841:3206F1:20F4A0D:26133D0:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:55 GMT
content-type: text/fragment+html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: max-age=14400, private
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F841:3206F1:20F4A0D:26133CF:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/used_by_list HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/fragment+html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:55 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"5b31a9834d671bf0910962f13fd3875e"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: a53a47569f47b43481f8c5743f07e65ec3053bf04fc76adef5bd42d3a8d70ccb
accept-ranges: bytes
content-length: 501
x-github-request-id: F841:3206F1:20F4A0D:26133D2:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2 HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html
dnt: 1
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: text/plain; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 20
x-github-request-id: F841:3206F1:20F4A0D:26133D1:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"adc2c0d060742993a54f31416bc951e3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 79
x-github-request-id: F841:3206F1:20F4A12:26133DA:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/refs?type=branch HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: application/json
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"57dd3ff551f8b3d10b3856a048bab63c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 53
x-github-request-id: F841:3206F1:20F4A12:26133DC:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"ced17b2112827c8d5577d524acbe58b5"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 632
x-github-request-id: F841:3206F1:20F4A12:26133D9:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/branch-and-tag-count

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/branch-and-tag-count HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"07da86d5c2d3c431a0aa2221ab777c22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1218
x-github-request-id: F841:3206F1:20F4A12:26133DB:6765F3DF
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree/master/Ransomware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
accept: text/html, application/xhtml+xml, application/json
dnt: 1
turbo-visit: true
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
x-react-app-name: repos-overview
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:06 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"c89be6a2964e2978c2d4323cc34532f7"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
x-html-safe: a53a47569f47b43481f8c5743f07e65ec3053bf04fc76adef5bd42d3a8d70ccb
accept-ranges: bytes
x-github-request-id: F841:3206F1:20F4EBA:2613959:6765F3E0
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:07 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"bb234f79843f6b8448edb04cacc8b10c"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 1140
x-github-request-id: F841:3206F1:20F4F05:26139B3:6765F3EB
GET

https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Ransomware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Ransomware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:07 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"daa8cdc28e2a92e29b5b249ec65db5d2"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 442
x-github-request-id: F841:3206F1:20F4F04:26139B2:6765F3EA
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:07 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: F841:3206F1:20F4F05:26139B4:6765F3EB
GET

https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: application/json
x-requested-with: XMLHttpRequest
x-react-router: json
x-github-target: dotcom
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:16 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"382e9d7d3b078433ae1867411de415cb"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 2202
x-github-request-id: F841:3206F1:20F52D0:2613E2F:6765F3EB
GET

https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:17 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"3b1ec0bc5e0864a5815defaffc90db22"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 181
x-github-request-id: F841:3206F1:20F530F:2613E71:6765F3F5
GET

https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: application/json
accept: application/json
x-requested-with: XMLHttpRequest
github-verified-fetch: true
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:17 GMT
content-type: application/json; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
etag: W/"daa8cdc28e2a92e29b5b249ec65db5d2"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-encoding: gzip
accept-ranges: bytes
content-length: 442
x-github-request-id: F841:3206F1:20F530F:2613E70:6765F3F4
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F841:3206F1:20F53E5:2613F8C:6765F3F5
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F841:3206F1:20F5895:261450F:6765F3F7
GET

https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

20.26.156.215:443

Request

GET /Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: github.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _gh_sess=Ycg50NL%2B5fJT3u5aQXIai9AZzYGg6xh%2BPdYDoMcgETwv0zISSASTUyhTxOBCdFf3jNK12q%2BVu5J%2FhRRNR2WhQmJ4Mqmdt%2B7uMv0SESV2zTbf9q0%2FNeYBxUZu92F5FwSlV0ak6zCn6JlMhCK%2FJPSuAslXzPYHRJVenhcQ%2F7DSaG%2BbsuWRupXjXvif5wdzT24cXL8DQEBf%2BsdE%2BmMhL1SUujAaG46nxgU3U9XEUxozoe0950eex8qEX0C8gk5Q1h1X2N5fGJm1PFejW%2Bul4JVDtQ%3D%3D--6jiTzkLu8NEXPGO7--qj1Gs%2BPgy7Ms7R4cbVnLdA%3D%3D
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 302

server: GitHub.com
date: Fri, 20 Dec 2024 22:47:19 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin:
location: https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ github.com/webpack/ github.com/assets/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: F841:3206F1:20F5908:26145AB:6765F402
DNS

avatars.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

avatars.githubusercontent.com

IN A

Response

avatars.githubusercontent.com

IN A

185.199.110.133

avatars.githubusercontent.com

IN A

185.199.111.133

avatars.githubusercontent.com

IN A

185.199.109.133

avatars.githubusercontent.com

IN A

185.199.108.133
DNS

github.githubassets.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github.githubassets.com

IN A

Response

github.githubassets.com

IN A

185.199.110.154

github.githubassets.com

IN A

185.199.111.154

github.githubassets.com

IN A

185.199.108.154

github.githubassets.com

IN A

185.199.109.154
GET

https://avatars.githubusercontent.com/u/27564220?v=4&size=40

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/27564220?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "136562bcf2abcf563ac2cfdb83204a6f3161593f74266fc844505b767686c09a"
last-modified: Sat, 15 Apr 2017 15:28:58 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: D852:3354AE:148CC1:1883B3:67599085
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734771.576149,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 50739c8dc0c872e9b4916e412c45cb1cd16d2d87
expires: Fri, 20 Dec 2024 22:51:10 GMT
source-age: 811821
vary: Authorization,Accept-Encoding
content-length: 1087
GET

https://avatars.githubusercontent.com/u/27564220?s=40&v=4

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/27564220?s=40&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "136562bcf2abcf563ac2cfdb83204a6f3161593f74266fc844505b767686c09a"
last-modified: Sat, 15 Apr 2017 15:28:58 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 1FBF:332DA8:19FF:1CF4:67585E06
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:17 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734777.432175,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 61eb65ceec2e182d0d30cf249420c4ffce5ab197
expires: Fri, 20 Dec 2024 22:51:17 GMT
source-age: 890290
vary: Authorization,Accept-Encoding
content-length: 1087
GET

https://avatars.githubusercontent.com/u/63458929?s=64&v=4

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/63458929?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "1d9f1acf397d81e762e9ede9d36dd95eb2e889d8dc41c4f240aa17ffcd5ff02f"
last-modified: Thu, 20 Jul 2023 19:54:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 3370:3A0AC1:12824D:160147:67501957
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:56 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734816.065404,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 61e9e8996f4e61ee90d2c90e52da9644d41c14e4
expires: Fri, 20 Dec 2024 22:51:56 GMT
source-age: 1432199
vary: Authorization,Accept-Encoding
content-length: 1266
GET

https://avatars.githubusercontent.com/u/123590232?s=64&v=4

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/123590232?s=64&v=4 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Sat, 06 Dec 2014 07:54:23 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 5B3B:322CD7:7578D:9438A:6757FCB9
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:56 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734816.065250,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 847fdce5023c3079e4a9244a437cd16a9f078ddf
expires: Fri, 20 Dec 2024 22:51:56 GMT
source-age: 915239
vary: Authorization,Accept-Encoding
content-length: 1505
GET

https://avatars.githubusercontent.com/u/63458929?v=4&size=40

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/63458929?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "e25efc2f3c542a995df70f85198b7fd6184be4700ec9756e00c0a8fd9e7a124c"
last-modified: Sat, 20 Dec 2014 11:04:59 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: C149:2D5422:1606CF:19EF54:67627F80
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:56 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734816.121145,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: c8934025957bb06004dbc3fc645327e021e12db2
expires: Fri, 20 Dec 2024 22:51:56 GMT
source-age: 226398
vary: Authorization,Accept-Encoding
content-length: 1505
GET

https://avatars.githubusercontent.com/u/123590232?v=4&size=40

msedge.exe

Remote address:

185.199.110.133:443

Request

GET /u/123590232?v=4&size=40 HTTP/2.0
host: avatars.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/jpeg
etag: "7092780138ee29ef74ab07ab33208aed411686853b3bcef4814b6c7687153094"
last-modified: Thu, 20 Jul 2023 19:54:24 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant:
x-xss-protection: 1; mode=block
x-github-request-id: 904E:3B894A:2B28B1:3325EF:675175B6
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:07 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600039-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734827.471261,VS0,VE3
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 4c8fb1f46a20200f90d6f8ac7045b3498634707d
expires: Fri, 20 Dec 2024 22:52:07 GMT
source-age: 1343021
vary: Authorization,Accept-Encoding
content-length: 1014
DNS

217.106.137.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

217.106.137.52.in-addr.arpa

IN PTR

Response
DNS

github-cloud.s3.amazonaws.com

msedge.exe

Remote address:

8.8.8.8:53

Request

github-cloud.s3.amazonaws.com

IN A

Response

github-cloud.s3.amazonaws.com

IN CNAME

s3-1-w.amazonaws.com

s3-1-w.amazonaws.com

IN CNAME

s3-w.us-east-1.amazonaws.com

s3-w.us-east-1.amazonaws.com

IN A

52.217.225.25

s3-w.us-east-1.amazonaws.com

IN A

52.217.126.153

s3-w.us-east-1.amazonaws.com

IN A

52.216.207.147

s3-w.us-east-1.amazonaws.com

IN A

52.216.249.156

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.57

s3-w.us-east-1.amazonaws.com

IN A

3.5.28.76

s3-w.us-east-1.amazonaws.com

IN A

16.15.176.243

s3-w.us-east-1.amazonaws.com

IN A

16.15.217.23
DNS

215.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

215.156.26.20.in-addr.arpa

IN PTR

Response
GET

https://github.githubassets.com/assets/light-0cfd1fd8509e.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/light-0cfd1fd8509e.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:18 GMT
etag: "0x8DD09A9B15EC064"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1377512
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 141, 35813
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 847e4da999a4663494a4dfe99424c005068e2fae
content-length: 6899
GET

https://github.githubassets.com/assets/dark-d782f59290e2.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/dark-d782f59290e2.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 20 Nov 2024 21:24:16 GMT
etag: "0x8DD09A9B01484BC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1377509
x-served-by: cache-iad-kiad7000027-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 139, 36078
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 23d07d26b8fff7bd44ffe26fa211c948997bd536
content-length: 6985
GET

https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-primitives-953961b66e63.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 11 Dec 2024 17:38:33 GMT
etag: "0x8DD1A0AA2CE9848"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 725386
x-served-by: cache-iad-kcgs7200156-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 9, 20700
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4f36ace78259d7b7ff4d3f9eab9d437ad2b7d310
content-length: 2591
GET

https://github.githubassets.com/assets/primer-4430d3c2c150.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-4430d3c2c150.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 20 Dec 2024 19:37:11 GMT
etag: "0x8DD212DB320AE8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 4234
x-served-by: cache-iad-kiad7000146-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 99, 92
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 385eaa909b6dbcb7c7f122c15c676a83354cb082
content-length: 38143
GET

https://github.githubassets.com/assets/github-e72829f5538b.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-e72829f5538b.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 13 Dec 2024 19:44:51 GMT
etag: "0x8DD1BAE9C74ED39"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 273797
x-served-by: cache-iad-kcgs7200070-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 26, 8726
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3b5077c74e9b0a46b27fd43b9dd3905b2f3aa72f
content-length: 21280
GET

https://github.githubassets.com/assets/global-47b8b2ca21ae.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/global-47b8b2ca21ae.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 17 Dec 2024 18:43:31 GMT
etag: "0x8DD1ECAB43210B5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 83851
x-served-by: cache-iad-kjyo7100094-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 457
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d91b980d8de2c91a1124f081e5675652fc961960
content-length: 39148
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Wed, 18 Dec 2024 14:30:02 GMT
etag: "0x8DD1F7075BC9820"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 95856
x-served-by: cache-iad-kcgs7200091-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 33, 3244
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a113edcbb590261efde8f0dbe29c5ecb538aade8
content-length: 18441
GET

https://github.githubassets.com/assets/primer-react.797c8ec006b327590422.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-react.797c8ec006b327590422.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Fri, 06 Dec 2024 20:56:32 GMT
etag: "0x8DD16387725931D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 887056
x-served-by: cache-iad-kjyo7100112-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 10, 15373
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4eb6d5d32450a57c8815499d8e63be81dc1eb26f
content-length: 5163
GET

https://github.githubassets.com/assets/code-9e1913b328be.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-9e1913b328be.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 26 Nov 2024 21:12:56 GMT
etag: "0x8DD0E5F193AF82C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1401798
x-served-by: cache-iad-kjyo7100144-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 32027
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 81748a070ccbd06e5cd23d93e0e8402f2a3c4623
content-length: 5150
GET

https://github.githubassets.com/assets/repository-d031bcc14e1b.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repository-d031bcc14e1b.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Mon, 26 Aug 2024 16:36:17 GMT
etag: "0x8DCC5ED35736954"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 4688376
x-served-by: cache-iad-kjyo7100115-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 32, 26407
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3b42f9d826453e742464b2379cdf2cba6a2fab07
content-length: 479
GET

https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview.9cc263aa0716ce801059.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 22 Oct 2024 14:40:08 GMT
etag: "0x8DCF2A76D2FB21D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 2728742
x-served-by: cache-iad-kiad7000028-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 18423
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2b4cf25624daa9f9c81386bec4f77ce3076794c2
content-length: 222
GET

https://github.githubassets.com/assets/wp-runtime-64d23f636568.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/wp-runtime-64d23f636568.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E029647C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30351
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5ffcf90cf25917c8c3cdd42cd1762b6b6b1c042c
content-length: 3080
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 20 Dec 2024 15:51:12 GMT
etag: "0x8DD210E212352C0"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 22781
x-served-by: cache-iad-kjyo7100153-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 41, 782
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ae07982b7178da68cbaaf63796a117295099a168
content-length: 14075
GET

https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500CD2AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kjyo7100040-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30517
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 14cf9abf47eb4ae4db0e70a787277ec68bba22e6
content-length: 5756
GET

https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-c551691a8183.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_failbot_failbot_ts-c551691a8183.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F8D41"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 4975129
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 42466, 35405
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f94f56ef838797a0a17bdaa7b00096f430abb109
content-length: 3284
GET

https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/environment-7b93e0f0c8ff.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBFE222"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30484
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e078e3db8abd1fa17ca296ba40a8def012d5e784
content-length: 4848
GET

https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:36 GMT
etag: "0x8DD0D5EFC4A53FF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1498834
x-served-by: cache-iad-kiad7000134-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 39049
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cf8edc47e36a359df452a8744e2b89f0f8ffd99a
content-length: 735
GET

https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:04 GMT
etag: "0x8DD1A31D2913996"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350798
x-served-by: cache-iad-kcgs7200056-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 73, 9628
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5c4ab71f6cf6598476367e8095fa3783e71dc502
content-length: 3629
GET

https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 18:22:05 GMT
etag: "0x8DD187E625ACB6B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 940766
x-served-by: cache-iad-kiad7000085-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 27500
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9583259534e8cf23f2cb9b45d6c2fdf0ae1d1ec7
content-length: 4645
GET

https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:52 GMT
etag: "0x8DD0D5F05CBAB3B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1498834
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 39572
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f825650314789c083a662fceefcaadedf89997e7
content-length: 6786
GET

https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 19:56:20 GMT
etag: "0x8DD1954B7817C15"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4512
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ba42fc69ac61ea107a191f37843b3329bcce7a94
content-length: 3683
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:30 GMT
etag: "0x8DD2051FF28CC62"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 83851
x-served-by: cache-iad-kjyo7100035-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 465
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1dedde576b22b736f15b98946fa9897240fdcff9
content-length: 27463
GET

https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:27 GMT
etag: "0x8DD0D665E0F9ED8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kcgs7200078-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30587
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6a965237185047483013b756cc1e3a81e70c041e
content-length: 5379
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500C5DFD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000164-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30527
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8f7985b509c9e3c1f33785b818096b0253c1048f
content-length: 4311
GET

https://github.githubassets.com/assets/github-elements-f991cfab5105.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/github-elements-f991cfab5105.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:24:25 GMT
etag: "0x8DD2051FC564485"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 83851
x-served-by: cache-iad-kjyo7100112-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 60, 461
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f477e42394272013e14a76bbfe0b8b245f2a2982
content-length: 9522
GET

https://github.githubassets.com/assets/element-registry-d283cbab281e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/element-registry-d283cbab281e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500E579D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kjyo7100066-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30605
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 451e690fa7caf68e97bc3a3f568120317fe44289
content-length: 3918
GET

https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B44FAF168F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000037-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30620
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bdd56751dae03bbb4381ff71f76dfc29485bfb51
content-length: 2385
GET

https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 20:13:06 GMT
etag: "0x8DD1FA062B76FEE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4515
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a806db151dc48812ccf7e23942d4c958d2f9bca9
content-length: 4964
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Dec 2024 19:55:11 GMT
etag: "0x8DD1E0B8D014955"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kcgs7200171-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4509
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c7c489ea00c501a19bad89a0c899b6ee326e5500
content-length: 7892
GET

https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:40 GMT
etag: "0x8DD02B44F3EF886"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kcgs7200145-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30732
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e84b56c01ed6042774b12c6c897e78796d2bc5b5
content-length: 4851
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602F3D8E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000100-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 4026
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d453c6a57a7f8dbe8e934ebea55589cf2e36f679
content-length: 19397
GET

https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 09:56:04 GMT
etag: "0x8DD1900DC86F5C7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 818926
x-served-by: cache-iad-kcgs7200058-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 24267
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 61a87b576e01d00d4d16ddd6a3fe3296b441fea7
content-length: 3407
GET

https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 17:45:32 GMT
etag: "0x8DD1879474B8D64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 860444
x-served-by: cache-iad-kcgs7200057-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 24994
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: efb43f57f6703a338bab9ca7d4b300855669f735
content-length: 4452
GET

https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD15446030C279"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 31191
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f106854973293148ef779552d9eb32d4f6994e5f
content-length: 18635
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:13 GMT
etag: "0x8DCB7D5A12F3F7D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 4033956
x-served-by: cache-iad-kcgs7200153-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 22219, 35731
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 17537bee07167de4b3a05f542950a0ebd59d9823
content-length: 3816
GET

https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 15 Oct 2024 16:12:32 GMT
etag: "0x8DCED342CC2D5FC"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 3336188
x-served-by: cache-iad-kcgs7200039-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 7132, 36248
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 5b27c4a6178e7aafaa62ee6f1faea8f528f06a55
content-length: 3363
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 19 Nov 2024 17:47:26 GMT
etag: "0x8DD08C23B22EDF8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 2678182
x-served-by: cache-iad-kiad7000141-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 36636
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: facbbbe0f23042190f7e3ba86912cb1263450c95
content-length: 4143
GET

https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D010928E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350793
x-served-by: cache-iad-kiad7000113-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 61, 7248
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: adc8a37a6b15f9aa05dbf702259f17acb9fb6b98
content-length: 4986
GET

https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/behaviors-a6abce982f3f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC3AE69"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055007
x-served-by: cache-iad-kcgs7200159-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 19762
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 4c519f4152bfa0cbe1cd657e756a4b3c4154d5d5
content-length: 6126
GET

https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:01 GMT
etag: "0x8DD1A31D0950C44"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350793
x-served-by: cache-iad-kiad7000130-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 57, 6233
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 754146659f516dc62a69db74311bda04deddbd6c
content-length: 3489
GET

https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-global-cfcd9f4f0f23.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:27 GMT
etag: "0x8DD1969F7D55965"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 860445
x-served-by: cache-iad-kcgs7200176-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 62, 14923
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 97261b46c0a0f2d4d40a5f557fc3b8242578924f
content-length: 16144
GET

https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:27 GMT
etag: "0x8DD0D665E7C17D4"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055007
x-served-by: cache-iad-kcgs7200094-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 19019
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 31299bf991581424e0b6a839e2944b36d0c3df93
content-length: 2646
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Dec 2024 17:20:12 GMT
etag: "0x8DD1B9A66F92367"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350798
x-served-by: cache-iad-kcgs7200070-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 73, 12311
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a573674c87b7cdc674fcc15482396c8083360042
content-length: 108340
GET

https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 17:20:57 GMT
etag: "0x8DD205180915E18"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 99560
x-served-by: cache-iad-kjyo7100141-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 38, 3476
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 304bc067f6a50da81bc3525587670b0660a57063
content-length: 40640
GET

https://github.githubassets.com/assets/codespaces-a493a4b9528f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/codespaces-a493a4b9528f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:38 GMT
etag: "0x8DD02B44DEAF90D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kjyo7100051-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 33532
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d33475769a2c198c4515ff47d047cb79c0499fa1
content-length: 54804
GET

https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 02 Oct 2024 18:46:02 GMT
etag: "0x8DCE3127730EEAF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 2132329
x-served-by: cache-iad-kiad7000161-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 40562
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 1863eac3906adf151585da1d13aa4e6f874c1f45
content-length: 90797
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD154460870CCD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 32680
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 66b678ad56563a00f570ea0172731f013f58e916
content-length: 7079
GET

https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FBEF8D2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kiad7000052-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 32864
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9c81567da21bd911f1ef5fb09c2ea53fa1aaa869
content-length: 9716
GET

https://github.githubassets.com/assets/repositories-f3093651fb0e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repositories-f3093651fb0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E025E5FB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kcgs7200172-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 32579
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 273fb73912ae10fa773cdac0cbe76abc58767220
content-length: 3077
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:38 GMT
etag: "0x8DD185587B55AC2"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 870256
x-served-by: cache-iad-kcgs7200080-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 19, 16974
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0d066cb7de53d5f4657bab8e7b1480d0d73bab38
content-length: 5400
GET

https://github.githubassets.com/assets/code-menu-b5f092ec4b30.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/code-menu-b5f092ec4b30.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 21:21:05 GMT
etag: "0x8DD1FA9E1A14879"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 99560
x-served-by: cache-iad-kjyo7100061-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 38, 3299
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 54bdc3214ea3e12648097fa83808106e5393dc0b
content-length: 6241
GET

https://github.githubassets.com/assets/primer-react-753dc87b1e29.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/primer-react-753dc87b1e29.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:27 GMT
etag: "0x8DD0D5EF6E1B53E"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1498834
x-served-by: cache-iad-kcgs7200138-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 20, 39412
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 59daad9bf28152db8664ed1623a1fae0be34fbdc
content-length: 3083
GET

https://github.githubassets.com/assets/react-core-accb67f1350f.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-core-accb67f1350f.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:17 GMT
etag: "0x8DD1969F1BFDB43"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 860444
x-served-by: cache-iad-kjyo7100119-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 63, 25155
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 7531810539ec1fd15a8f0b49c5b9b10f36ffa9b8
content-length: 6141
GET

https://github.githubassets.com/assets/react-lib-2131e17288a8.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-lib-2131e17288a8.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 22:25:52 GMT
etag: "0x8DD207C18FC3FA9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 67366
x-served-by: cache-iad-kjyo7100114-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 92, 2703
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bbcb16cb9b09f37698f09e7f398a96762f60de83
content-length: 60145
GET

https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/octicons-react-45c3a19dd792.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C817F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kjyo7100132-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 32699
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: b2b4760776bd59c700f5f62999ae76a1040444d3
content-length: 5120
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:07 GMT
etag: "0x8DD15445A24BD36"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055007
x-served-by: cache-iad-kcgs7200068-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 17349
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 377401b8d00100fc4b8dec84a9db81f920e2106f
content-length: 5491
GET

https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 14:39:53 GMT
etag: "0x8DD0D5F064BBD59"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1498827
x-served-by: cache-iad-kiad7000150-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 21870
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: dbe3edcf006ef48535123275e2083c5901030ac4
content-length: 4975
GET

https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Sat, 16 Nov 2024 19:35:21 GMT
etag: "0x8DD0675CF86BAD9"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055007
x-served-by: cache-iad-kiad7000054-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 19103
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 69aa3b102626445af5db85d559bf7046bd826bd8
content-length: 4341
GET

https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 08 Aug 2024 18:12:15 GMT
etag: "0x8DCB7D5A25F63A1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 2703468
x-served-by: cache-iad-kiad7000040-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 7891, 25400
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 9111b4314a645f7bb4f39e0fe191f155f74db232
content-length: 3888
GET

https://github.githubassets.com/assets/notifications-subscriptions-menu-51601778bd8d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/notifications-subscriptions-menu-51601778bd8d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:11 GMT
etag: "0x8DD15445D10CB59"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055023
x-served-by: cache-iad-kcgs7200049-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 30620
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6c51cb06313153b4a1e10200fdab774ea9db455b
content-length: 3027
GET

https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:16 GMT
etag: "0x8DD15445FC02FE8"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055007
x-served-by: cache-iad-kiad7000022-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 17889
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: fb2f92c51f4f1984e61bb0ca6cc046ae6d61bc12
content-length: 3500
GET

https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/keyboard-shortcuts-dialog-958cae8ecd6c.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:36 GMT
etag: "0x8DD185586577B2A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 870268
x-served-by: cache-iad-kcgs7200178-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 42, 22210
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 6806091438d80607022987f5ebf833d644e26f34
content-length: 6212
GET

https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 25 Nov 2024 15:32:22 GMT
etag: "0x8DD0D665B346AD3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1054508
x-served-by: cache-iad-kiad7000020-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 24363
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 24d7574c5b4dcbdb3043a7c4d306a5f30de46686
content-length: 4152
GET

https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/sessions-5d6426bbf16a.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:17 GMT
etag: "0x8DD1544602C33B7"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1054508
x-served-by: cache-iad-kjyo7100030-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 30, 24409
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 46368070dd60f85e22d395e0a7311345cfcde5c0
content-length: 5246
GET

https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:52 GMT
etag: "0x8DD0327DE7A8BE3"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055022
x-served-by: cache-iad-kiad7000107-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 21097
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3188cbabc7490cbdc615234c6c048989e5bc0432
content-length: 8037
GET

https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:55 GMT
etag: "0x8DD0327E029647C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055022
x-served-by: cache-iad-kcgs7200065-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 18517
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0a1bcdcdf533ee5947d8b3215ebf0548ef6dc41f
content-length: 3412
GET

https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 22:28:29 GMT
etag: "0x8DD1969F8C0ACAB"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 860444
x-served-by: cache-iad-kjyo7100053-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 71, 17178
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f4753b808a7288355154b23e4fa0f0f36d00ec04
content-length: 3123
GET

https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 15:00:11 GMT
etag: "0x8DD203DD5F27E62"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 95855
x-served-by: cache-iad-kiad7000167-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 1936
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 2b8ee78bed2abae583d35ad455348d7d188ecae9
content-length: 5296
GET

https://github.githubassets.com/assets/ui_packages_paths_index_ts-4e4d706da555.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_paths_index_ts-4e4d706da555.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 03:47:22 GMT
etag: "0x8DD1FDFD884F18B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 95856
x-served-by: cache-iad-kjyo7100151-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 117, 2944
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 8fc2ae0a52d0a2d750353a8a1342410a9b2b8b5c
content-length: 5898
GET

https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-9445f4afb2bc.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_ref-selector_RefSelector_tsx-9445f4afb2bc.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 18:53:47 GMT
etag: "0x8DD194BFA81CCF1"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 870267
x-served-by: cache-iad-kjyo7100083-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 25, 13553
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f96108ef1c3cb1202db81d555487525449a81601
content-length: 6283
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-7dfba50d2c16.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-7dfba50d2c16.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 20:30:30 GMT
etag: "0x8DD206BFB52D2F5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 87896
x-served-by: cache-iad-kiad7000036-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 44, 1637
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: be6a2e43320e69638491043fa891f519f72a2c2d
content-length: 15659
GET

https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-56ee79-b20e64ad06f9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-56ee79-b20e64ad06f9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 15:00:09 GMT
etag: "0x8DD203DD4E9D962"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 95855
x-served-by: cache-iad-kiad7000060-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 1952
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e213875d45270011053c41e2bf34a8e18439ad97
content-length: 20760
GET

https://github.githubassets.com/assets/repos-overview-e21499fb8264.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/repos-overview-e21499fb8264.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 13 Dec 2024 20:46:29 GMT
etag: "0x8DD1BB73845185D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 11484
x-served-by: cache-iad-kjyo7100037-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 80, 71
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d92c0e979e94ff0a0d9f252e7536395534cb0f43
content-length: 9211
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44A573252"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055024
x-served-by: cache-iad-kcgs7200111-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 28753
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 170ce617a5f256be84f46816cb97c756e74dcb23
content-length: 543
GET

https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 05 Dec 2024 15:49:06 GMT
etag: "0x8DD154459929787"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055024
x-served-by: cache-iad-kiad7000145-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 27150
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 14125dc659a6c6fd6bbaec28d97f3e7034642b16
content-length: 4066
GET

https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:00 GMT
etag: "0x8DD1A31D05E5B2D"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350799
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 9244
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 41d383c200f244537de6da929d5e4ea404a93a45
content-length: 7760
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:33 GMT
etag: "0x8DD162AEA51054B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kiad7000077-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 4027
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 703a2cddfec0e5ff6f6e5f95848b65e5e1db1da3
content-length: 7440
GET

https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3C55516"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kiad7000044-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 4050
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 58e07ab96120fdd6d5f5efa90680d554d472d278
content-length: 6323
GET

https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 14:39:20 GMT
etag: "0x8DD0327CB20BA64"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 1055024
x-served-by: cache-iad-kjyo7100077-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 27432
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d17f8842d57ad31475b0e7daa19fddf3a4ca51da
content-length: 5382
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 11 Dec 2024 22:19:01 GMT
etag: "0x8DD1A31D08393AD"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 350799
x-served-by: cache-iad-kjyo7100056-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 72, 8641
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 253508bdb9af33776b1566e90338f336242e0262
content-length: 4436
GET

https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Thu, 12 Dec 2024 15:17:53 GMT
etag: "0x8DD1AC026545DBA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kiad7000126-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 4028
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: c79fadb335a5c25e84ce51e1e591b7a15bbf94ce
content-length: 16643
GET

https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:21 GMT
etag: "0x8DD162AE37E62AA"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kjyo7100125-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4249
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 25b9640501196e67e6755bb3dc82f01e178e9656
content-length: 2920
GET

https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BCFA12"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kcgs7200085-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4257
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3c86404cffc9413f1e9fe9ec87852466fd7167a0
content-length: 3165
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BAD98C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kiad7000114-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 4014
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: d889ca90e1207782496128cd4bf67e5e9db38290
content-length: 5020
GET

https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 13:39:03 GMT
etag: "0x8DD1F695643DD5B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kcgs7200121-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 13, 4025
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: df6ef9ffce3ba382653aa405a894c1c61d75b182
content-length: 2523
GET

https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 06 Dec 2024 19:19:22 GMT
etag: "0x8DD162AE3BC3790"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:09 GMT
age: 124407
x-served-by: cache-iad-kiad7000163-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 14, 4263
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: bc485344ddc4dd59fb9f64808db10b930534881f
content-length: 2790
GET

https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-9889e76b905e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-9889e76b905e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 09 Dec 2024 13:29:32 GMT
etag: "0x8DD185583E1EC04"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
age: 870257
x-served-by: cache-iad-kjyo7100065-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 17, 11187
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 39dfe04c4c3566b6850c244495d11c05f11d6333
content-length: 5069
GET

https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:32 GMT
etag: "0x8DD02B44AD10969"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
age: 1055024
x-served-by: cache-iad-kjyo7100146-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1, 27703
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e2a8691692ea4fa6e399ee474f71e2c5ec13526a
content-length: 9421
GET

https://github.githubassets.com/assets/releases-d27bae89dc62.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/releases-d27bae89dc62.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Tue, 01 Oct 2024 15:34:46 GMT
etag: "0x8DCE22E94389022"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:17 GMT
age: 4107705
x-served-by: cache-iad-kiad7000069-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 5, 4743
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0b0d1f0dd539771c5ea844556cc782d46f6766b1
content-length: 556
GET

https://github.githubassets.com/assets/vendors-node_modules_github_blackbird-parser_dist_blackbird_js-df077101f752.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_github_blackbird-parser_dist_blackbird_js-df077101f752.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:40 GMT
etag: "0x8DD02B44F68BFC5"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:32 GMT
age: 1054964
x-served-by: cache-iad-kcgs7200032-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 34, 3222
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: f79b511bae781151d6e0efda7da35bfd826540cc
content-length: 6882
GET

https://github.githubassets.com/assets/chunk-app_components_search_parsing_parsing_ts-0dbb4d051f34.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/chunk-app_components_search_parsing_parsing_ts-0dbb4d051f34.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
content-md5: ItuD8AtY6RN8Sb9E6RYUGg==
last-modified: Wed, 14 Aug 2024 19:52:15 GMT
etag: "0x8DCBC9A98A3BE4A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:32 GMT
age: 3345602
x-served-by: cache-iad-kcgs7200087-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 1241, 3864
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 0a8daa6ac10d345f82516c31328e45413e686274
content-length: 2115
GET

https://github.githubassets.com/assets/react-code-view.6b587a69b593e23c3657.module.css

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-code-view.6b587a69b593e23c3657.module.css HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: style
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: text/css
last-modified: Thu, 07 Nov 2024 20:35:22 GMT
etag: "0x8DCFF6BB3DAE07C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 3640864
x-served-by: cache-iad-kjyo7100022-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 71, 10773
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 936cf4f3a433068952f5def6b11f749c536d93a0
content-length: 1101
GET

https://github.githubassets.com/assets/vendors-node_modules_lodash-es__Stack_js-node_modules_lodash-es__Uint8Array_js-node_modules_l-4faaa6-10d8eea337ce.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_lodash-es__Stack_js-node_modules_lodash-es__Uint8Array_js-node_modules_l-4faaa6-10d8eea337ce.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Mon, 16 Sep 2024 23:19:54 GMT
etag: "0x8DCD6A6128E8C4A"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 3995753
x-served-by: cache-iad-kiad7000157-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 49, 13577
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: ed8a218e62691162258558a66d74a0af5fc98ac1
content-length: 2209
GET

https://github.githubassets.com/assets/vendors-node_modules_lodash-es__baseIsEqual_js-8929eb9718d5.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/vendors-node_modules_lodash-es__baseIsEqual_js-8929eb9718d5.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 12 Nov 2024 00:52:41 GMT
etag: "0x8DD02B4500E09CE"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 1055065
x-served-by: cache-iad-kcgs7200047-IAD, cache-lcy-eglc8600038-LCY
x-cache: MISS, HIT
x-cache-hits: 0, 12208
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 3d5a542de851c0515e3005b8c118b40a3db127f8
content-length: 2137
GET

https://github.githubassets.com/assets/ui_packages_code-view-shared_utilities_web-worker_ts-ui_packages_code-view-shared_worker-jobs-cdcae1-f0dc8f3ae3e0.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_code-view-shared_utilities_web-worker_ts-ui_packages_code-view-shared_worker-jobs-cdcae1-f0dc8f3ae3e0.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Tue, 10 Dec 2024 01:09:57 GMT
etag: "0x8DD18B75D2F881B"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 870324
x-served-by: cache-iad-kjyo7100101-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 58, 6989
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a29962e0af7291e7df861f276f8261d46f08d32c
content-length: 9430
GET

https://github.githubassets.com/assets/ui_packages_document-metadata_document-metadata_ts-ui_packages_repos-file-tree-view_repos-fil-5db355-d0627efd6544.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/ui_packages_document-metadata_document-metadata_ts-ui_packages_repos-file-tree-view_repos-fil-5db355-d0627efd6544.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Wed, 18 Dec 2024 23:32:35 GMT
etag: "0x8DD1FBC40608B0C"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 87956
x-served-by: cache-iad-kiad7000168-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 824
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: 713ae023316f2fd9b1f85aa2a2b57c837011a1c1
content-length: 13672
GET

https://github.githubassets.com/assets/react-code-view-46a8d3dce54e.js

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/react-code-view-46a8d3dce54e.js HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://github.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: application/javascript
last-modified: Fri, 20 Dec 2024 12:51:26 GMT
etag: "0x8DD20F504464C08"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:06 GMT
age: 22839
x-served-by: cache-iad-kjyo7100131-IAD, cache-lcy-eglc8600038-LCY
x-cache: HIT, HIT
x-cache-hits: 35, 196
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a102322f9d6e0e8934e9971a59d97072a8db2149
content-length: 67047
DNS

81.144.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

81.144.22.2.in-addr.arpa

IN PTR

Response

81.144.22.2.in-addr.arpa

IN PTR

a2-22-144-81deploystaticakamaitechnologiescom
DNS

user-images.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

user-images.githubusercontent.com

IN A

Response

user-images.githubusercontent.com

IN A

185.199.111.133

user-images.githubusercontent.com

IN A

185.199.110.133

user-images.githubusercontent.com

IN A

185.199.109.133

user-images.githubusercontent.com

IN A

185.199.108.133
DNS

134.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

134.32.126.40.in-addr.arpa

IN PTR

Response
DNS

95.221.229.192.in-addr.arpa

Remote address:

8.8.8.8:53

Request

95.221.229.192.in-addr.arpa

IN PTR

Response
DNS

camo.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

camo.githubusercontent.com

IN A

Response

camo.githubusercontent.com

IN A

185.199.108.133

camo.githubusercontent.com

IN A

185.199.109.133

camo.githubusercontent.com

IN A

185.199.110.133

camo.githubusercontent.com

IN A

185.199.111.133
GET

https://camo.githubusercontent.com/1c2c6a4a3a5b705ec29a504f5c9757695e8c010b73d9625f393077b4737228ec/68747470733a2f2f692e696d6775722e636f6d2f4e4443585867442e6a7067

msedge.exe

Remote address:

185.199.108.133:443

Request

GET /1c2c6a4a3a5b705ec29a504f5c9757695e8c010b73d9625f393077b4737228ec/68747470733a2f2f692e696d6775722e636f6d2f4e4443585867442e6a7067 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/jpeg
last-modified: Sat, 09 Dec 2017 18:16:04 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: B78B:2D93B4:2FEEF0:3BFC0E:671F6391
accept-ranges: bytes
age: 66
date: Fri, 20 Dec 2024 22:46:09 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600030-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734769.163736,VS0,VE1
x-fastly-request-id: 693bb0734c748afc4a28f822f245ac9ee870d5f8
timing-allow-origin: https://github.com
content-length: 3218
GET

https://camo.githubusercontent.com/91e3133c2389f68bf3ff728124909494bb62db32535049bd90ef7b213e91f95b/68747470733a2f2f692e696d6775722e636f6d2f573561433672672e706e67

msedge.exe

Remote address:

185.199.108.133:443

Request

GET /91e3133c2389f68bf3ff728124909494bb62db32535049bd90ef7b213e91f95b/68747470733a2f2f692e696d6775722e636f6d2f573561433672672e706e67 HTTP/2.0
host: camo.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000
content-security-policy: default-src 'none'; img-src data:; style-src 'unsafe-inline'
content-type: image/png
last-modified: Sat, 09 Dec 2017 18:32:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
server: github.com
x-github-request-id: 2A7C:3B3E7B:935F5:A6EC6:674F68B8
accept-ranges: bytes
age: 66
date: Fri, 20 Dec 2024 22:46:09 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600030-LCY
x-cache: HIT
x-cache-hits: 0
x-timer: S1734734769.163772,VS0,VE1
x-fastly-request-id: 63e00871466aa4ebc8f8dd68c2dd080f069d2a9f
timing-allow-origin: https://github.com
content-length: 16328
DNS

133.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.110.199.185.in-addr.arpa

IN PTR

Response

133.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-133githubcom
DNS

154.110.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

154.110.199.185.in-addr.arpa

IN PTR

Response

154.110.199.185.in-addr.arpa

IN PTR

cdn-185-199-110-154githubcom
DNS

133.108.199.185.in-addr.arpa

Remote address:

8.8.8.8:53

Request

133.108.199.185.in-addr.arpa

IN PTR

Response

133.108.199.185.in-addr.arpa

IN PTR

cdn-185-199-108-133githubcom
DNS

collector.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

collector.github.com

IN A

Response

collector.github.com

IN CNAME

glb-db52c2cf8be544.github.com

glb-db52c2cf8be544.github.com

IN A

140.82.114.21
GET

https://github.githubassets.com/favicons/favicon.svg

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.svg HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/svg+xml
content-md5: bYAvaN8MCaSZfP0o7q/Z/w==
last-modified: Wed, 14 Aug 2024 19:18:58 GMT
etag: "0x8DCBC95F2647EDF"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
age: 53
x-served-by: cache-iad-kiad7000081-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 1694476, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: a59b08674676e8c9c0845f46fcb7ba5d9bfe82e6
content-length: 959
GET

https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /assets/apple-touch-icon-144x144-b882e354c005.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: public, max-age=31536000, immutable
content-type: image/png
content-md5: YDrNCDxuYozaAYS2sPzvIQ==
last-modified: Wed, 14 Aug 2024 19:49:39 GMT
etag: "0x8DCBC9A3C0EF02F"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
age: 650834
x-served-by: cache-iad-kiad7000023-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 381, 3422
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: e49e0da4f886a42946e4f5034bbf81b9a900c2ad
content-length: 14426
GET

https://github.githubassets.com/favicons/favicon.png

msedge.exe

Remote address:

185.199.110.154:443

Request

GET /favicons/favicon.png HTTP/2.0
host: github.githubassets.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: image/png
content-md5: NG4JRxNi8pB1EKMYEhKc0g==
last-modified: Wed, 14 Aug 2024 19:18:46 GMT
etag: "0x8DCBC95EB57AC96"
server: Windows-Azure-Web/1.0 Microsoft-HTTPAPI/2.0
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:46:10 GMT
age: 27
x-served-by: cache-iad-kiad7000070-IAD, cache-lcy-eglc8600048-LCY
x-cache: HIT, HIT
x-cache-hits: 2547685, 1
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
strict-transport-security: max-age=31536000
x-fastly-request-id: cbea1483b7af8c0d5aff95997e054435ffbcb4d6
content-length: 958
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1043
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:10 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002644
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:491CF7:6481FB:6765F3B2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1323
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:10 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003323
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:491CF7:6481FC:6765F3B2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1378
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001943
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:492388:648B9F:6765F3B2
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1586
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002878
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:4923B1:648BC7:6765F3B9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 924
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003700
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:492425:648C7C:6765F3B9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1312
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002848
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:49242B:648C86:6765F3B9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 909
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:29 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003376
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:492F88:649D85:6765F3B9
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 952
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:32 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002421
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:493302:64A2BA:6765F3C5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1044
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:32 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002724
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:493302:64A2BC:6765F3C8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1046
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002964
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:494981:64C457:6765F3C8
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1325
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:56 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003801
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:494988:64C462:6765F3E0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1312
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:57 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.004089
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:494ADF:64C66D:6765F3E0
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1543
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:46:57 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002579
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:494AFA:64C69A:6765F3E1
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1111
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:47:07 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002505
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:49546F:64D4A5:6765F3E1
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1525
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:47:07 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.003642
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:4954BB:64D521:6765F3EB
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1157
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:47:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.001758
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:495EEB:64E3D1:6765F3EB
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1168
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:47:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002909
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:495EF0:64E3D9:6765F3F5
POST

https://collector.github.com/github/collect

msedge.exe

Remote address:

140.82.114.21:443

Request

POST /github/collect HTTP/2.0
host: collector.github.com
content-length: 1577
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 204

date: Fri, 20 Dec 2024 22:47:17 GMT
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: Content-Type
access-control-allow-credentials: true
access-control-allow-origin: *
cache-control: no-cache
x-runtime: 0.002928
strict-transport-security: max-age=631138519
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-github-backend: Kubernetes
x-github-request-id: C2E3:30F600:495F08:64E40B:6765F3F5
DNS

api.github.com

msedge.exe

Remote address:

8.8.8.8:53

Request

api.github.com

IN A

Response

api.github.com

IN A

20.26.156.210
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1013
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:46:10 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738370
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:177C22:1D1603:6765F3B2
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 802
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:46:29 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738389
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:17807A:1D1B7B:6765F3B2
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 644
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:46:37 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738397
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:17822E:1D1DC5:6765F3C5
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 1327
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:46:56 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738416
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:1786E1:1D2398:6765F3CE
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 390
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:47:02 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738422
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:178827:1D254D:6765F3E0
POST

https://api.github.com/_private/browser/stats

msedge.exe

Remote address:

20.26.156.210:443

Request

POST /_private/browser/stats HTTP/2.0
host: api.github.com
content-length: 883
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
content-type: text/plain;charset=UTF-8
accept: */*
origin: https://github.com
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: _octo=GH1.1.1129827031.1734734768
cookie: logged_in=no
cookie: cpu_bucket=lg
cookie: preferred_color_mode=light
cookie: tz=UTC

Response

HTTP/2.0 200

date: Fri, 20 Dec 2024 22:47:12 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1734738432
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
server: github.com
x-github-request-id: F0FC:98D3C:178AE3:1D289B:6765F3E6
DNS

21.114.82.140.in-addr.arpa

Remote address:

8.8.8.8:53

Request

21.114.82.140.in-addr.arpa

IN PTR

Response

21.114.82.140.in-addr.arpa

IN PTR

lb-140-82-114-21-iadgithubcom
DNS

210.156.26.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

210.156.26.20.in-addr.arpa

IN PTR

Response
DNS

www.virustotal.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.virustotal.com

IN A

Response

www.virustotal.com

IN A

34.54.88.138
GET

https://www.virustotal.com/

msedge.exe

Remote address:

34.54.88.138:443

Request

GET / HTTP/2.0
host: www.virustotal.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.virustotal.com/gui/

msedge.exe

Remote address:

34.54.88.138:443

Request

GET /gui/ HTTP/2.0
host: www.virustotal.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
referer: https://github.com/AHXR/ghost/releases/tag/1.0.4
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

www.recaptcha.net

msedge.exe

Remote address:

8.8.8.8:53

Request

www.recaptcha.net

IN A

Response

www.recaptcha.net

IN A

142.250.179.67
GET

https://www.recaptcha.net/recaptcha/enterprise.js

msedge.exe

Remote address:

142.250.179.67:443

Request

GET /recaptcha/enterprise.js HTTP/2.0
host: www.recaptcha.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.virustotal.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
GET

https://www.recaptcha.net/recaptcha/enterprise.js

msedge.exe

Remote address:

142.250.179.67:443

Request

GET /recaptcha/enterprise.js HTTP/2.0
host: www.recaptcha.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.virustotal.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

138.88.54.34.in-addr.arpa

Remote address:

8.8.8.8:53

Request

138.88.54.34.in-addr.arpa

IN PTR

Response

138.88.54.34.in-addr.arpa

IN PTR

138885434bcgoogleusercontentcom
DNS

195.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.20.217.172.in-addr.arpa

IN PTR

Response

195.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f1951e100net

195.20.217.172.in-addr.arpa

IN PTR

par10s50-in-f3�J

195.20.217.172.in-addr.arpa

IN PTR

waw02s08-in-f3�J
DNS

67.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.179.250.142.in-addr.arpa

IN PTR

Response

67.179.250.142.in-addr.arpa

IN PTR

par21s19-in-f31e100net
DNS

168.201.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

168.201.250.142.in-addr.arpa

IN PTR

Response

168.201.250.142.in-addr.arpa

IN PTR

par21s23-in-f81e100net
DNS

region1.google-analytics.com

msedge.exe

Remote address:

8.8.8.8:53

Request

region1.google-analytics.com

IN A

Response

region1.google-analytics.com

IN A

216.239.34.36

region1.google-analytics.com

IN A

216.239.32.36
POST

https://region1.google-analytics.com/g/collect?v=2&tid=G-BLNDV9X2JR&gtm=45je4cc1v9119290270z89133079464za200zb9133079464&_p=1734734782422&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1786778694.1734734783&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1734734782&sct=1&seg=0&dl=https%3A%2F%2Fwww.virustotal.com%2Fgui%2Ffile%2F56695df422a0f0a901484ff6e3a3067e9f1e96096077ba901070bbd2b15503ea%2Fdetection&dr=https%3A%2F%2Fwww.virustotal.com%2F&dt=VirusTotal&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=587

msedge.exe

Remote address:

216.239.34.36:443

Request

POST /g/collect?v=2&tid=G-BLNDV9X2JR&gtm=45je4cc1v9119290270z89133079464za200zb9133079464&_p=1734734782422&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1786778694.1734734783&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1734734782&sct=1&seg=0&dl=https%3A%2F%2Fwww.virustotal.com%2Fgui%2Ffile%2F56695df422a0f0a901484ff6e3a3067e9f1e96096077ba901070bbd2b15503ea%2Fdetection&dr=https%3A%2F%2Fwww.virustotal.com%2F&dt=VirusTotal&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=587 HTTP/2.0
host: region1.google-analytics.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.virustotal.com
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.virustotal.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

recaptcha.net

msedge.exe

Remote address:

8.8.8.8:53

Request

recaptcha.net

IN A

Response

recaptcha.net

IN A

172.217.18.195
GET

https://recaptcha.net/recaptcha/api.js?render=explicit

msedge.exe

Remote address:

172.217.18.195:443

Request

GET /recaptcha/api.js?render=explicit HTTP/2.0
host: recaptcha.net
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.virustotal.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

36.34.239.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

36.34.239.216.in-addr.arpa

IN PTR

Response
DNS

110.179.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

110.179.250.142.in-addr.arpa

IN PTR

Response

110.179.250.142.in-addr.arpa

IN PTR

par21s20-in-f141e100net
DNS

195.18.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

195.18.217.172.in-addr.arpa

IN PTR

Response

195.18.217.172.in-addr.arpa

IN PTR

ham02s14-in-f1951e100net

195.18.217.172.in-addr.arpa

IN PTR

par10s38-in-f3�J
DNS

www.google.com

msedge.exe

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

172.217.20.164
DNS

170.201.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

170.201.250.142.in-addr.arpa

IN PTR

Response

170.201.250.142.in-addr.arpa

IN PTR

par21s23-in-f101e100net
DNS

170.201.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

170.201.250.142.in-addr.arpa

IN PTR
DNS

163.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

163.20.217.172.in-addr.arpa

IN PTR

Response

163.20.217.172.in-addr.arpa

IN PTR

waw02s07-in-f31e100net

163.20.217.172.in-addr.arpa

IN PTR

par10s49-in-f3�H

163.20.217.172.in-addr.arpa

IN PTR

waw02s07-in-f163�H
DNS

163.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

163.20.217.172.in-addr.arpa

IN PTR
GET

https://www.google.com/js/bg/Xe7AbhhPfZcEikoNmhghBXAEhOusDIBKWKS_roS4Q7E.js

msedge.exe

Remote address:

172.217.20.164:443

Request

GET /js/bg/Xe7AbhhPfZcEikoNmhghBXAEhOusDIBKWKS_roS4Q7E.js HTTP/2.0
host: www.google.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://recaptcha.net/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
DNS

164.20.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

164.20.217.172.in-addr.arpa

IN PTR

Response

164.20.217.172.in-addr.arpa

IN PTR

waw02s07-in-f41e100net

164.20.217.172.in-addr.arpa

IN PTR

waw02s07-in-f164�H

164.20.217.172.in-addr.arpa

IN PTR

par10s49-in-f4�H
DNS

232.168.11.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

232.168.11.51.in-addr.arpa

IN PTR

Response
DNS

212.20.149.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

212.20.149.52.in-addr.arpa

IN PTR

Response
DNS

18.31.95.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

18.31.95.13.in-addr.arpa

IN PTR

Response
DNS

107.12.20.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

107.12.20.2.in-addr.arpa

IN PTR

Response

107.12.20.2.in-addr.arpa

IN PTR

a2-20-12-107deploystaticakamaitechnologiescom
GET

https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&oit=0

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&oit=0 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 294
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d86c4a4fb1963271e27db87962
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-RxmF0G3nmoyjE+o65VjLWeIYK6+977Kseq+uSsNyhSU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:48 GMT
set-cookie: MUID=22A1E6A3F70D6CF81D65F3F8F6BE6D24; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=22A1E6A3F70D6CF81D65F3F8F6BE6D24; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=14F2B83C90656AF406ACAD6791D66B16; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=32FC6FD9C3D849C9BCE3F125DF72E50D&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=14F2B83C90656AF406ACAD6791D66B16; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734808.1000b063
GET

https://www.bing.com/qbox?query=v&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=b122b4cd4c694ad69c55d47af7417d1b&oit=1&cp=1&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=v&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=b122b4cd4c694ad69c55d47af7417d1b&oit=1&cp=1&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 432
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d860bd4c198fe7a954cd3ae722
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-VDaqQHD2U+27KnbTUdi7ny88P4zSdokN4NVml3oHCmA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:49 GMT
set-cookie: MUID=33B378F436D96FAC12B46DAF376A6E65; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=33B378F436D96FAC12B46DAF376A6E65; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=26087C6CCBE06D61136B6937CA536C2D; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=DA93B5D671A2416C9B97CAB505FB0E37&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:48 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=26087C6CCBE06D61136B6937CA536C2D; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734808.1000b11b
GET

https://www.bing.com/qbox?query=vi&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=35f3405e7e3449e0b3e1f36c062821f3&oit=1&cp=2&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=vi&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=35f3405e7e3449e0b3e1f36c062821f3&oit=1&cp=2&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 445
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d956df414c9846d9bcb3ce493a
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-fp7AN9kM1rqb+v03PfK8aELYXKsJo04GUWvPzPxyZfM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:49 GMT
set-cookie: MUID=3F3769C4AB80691D1D907C9FAAEB68E7; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3F3769C4AB80691D1D907C9FAAEB68E7; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0377BB36D0E16F780286AE6DD18A6EAA; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=460E0B431DF0419DAC9D9134402C711B&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=0377BB36D0E16F780286AE6DD18A6EAA; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734809.1000b305
GET

https://www.bing.com/qbox?query=vir&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=f8d2a17d5ae146cbbb69d83ca75ff2c6&oit=1&cp=3&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=vir&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=f8d2a17d5ae146cbbb69d83ca75ff2c6&oit=1&cp=3&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 435
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d9c54c4d3e8b3dadd8e9df1017
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ceXv1vKmouuT9/Yy5wTTG28ppqBgWaaZwLlJWiF3mRs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:49 GMT
set-cookie: MUID=25265AEAC6AE685D02DC4FB1C7636975; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=25265AEAC6AE685D02DC4FB1C7636975; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2D60C1B1860360852A20D4EA87CE6176; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=41AE456C248C48A0AA36B476C9A81AB4&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2D60C1B1860360852A20D4EA87CE6176; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734809.1000b3f5
GET

https://www.bing.com/qbox?query=viru&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=602a9d4b746b418db4c6c86ecf9f6362&oit=1&cp=4&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=viru&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=602a9d4b746b418db4c6c86ecf9f6362&oit=1&cp=4&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 323
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d93b1e4863a8aec729ad8ff5a0
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-CG/Bf0q8NxabbcGeYy+Dzv2Zm6yPeXJ/iA40D7DySgU='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:49 GMT
set-cookie: MUID=2C442F936AD36FD731063AC86BA86ED6; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2C442F936AD36FD731063AC86BA86ED6; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2C71E423A91F6C743B1FF178A8646DCA; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=24129275056B4C67AAA263E893CCC56D&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2C71E423A91F6C743B1FF178A8646DCA; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734809.1000b49b
GET

https://www.bing.com/qbox?query=virus&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=e185c55aa0fb4b3c96488329f142f35d&oit=1&cp=5&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=e185c55aa0fb4b3c96488329f142f35d&oit=1&cp=5&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 316
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3d976e34900a0182571b98730cd
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ZIR2MGIZkIk/LZ7IbiBYgP7Z7aNt4Zbr2T35vk4ST10='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:49 GMT
set-cookie: MUID=3A0D2E777DE76DCB0ED83B2C7C8B6CA4; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=3A0D2E777DE76DCB0ED83B2C7C8B6CA4; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=3622FCF7E2FA65733F85E9ACE39664FE; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=74D57BA422EE46E1B51647393E85CC87&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:49 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=3622FCF7E2FA65733F85E9ACE39664FE; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734809.1000b520
GET

https://www.bing.com/qbox?query=virus+&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=05a0949524b94127872c7706fff536c0&oit=1&cp=6&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=05a0949524b94127872c7706fff536c0&oit=1&cp=6&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 283
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dbe82846f385213d6b471b7001
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-1cwjFQrBxOWW716PebIq4//903+Z7gzUm85l38Kz9oc='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:51 GMT
set-cookie: MUID=0C64C4D7A2686767210AD18CA32F6650; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=0C64C4D7A2686767210AD18CA32F6650; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=24C8D78117E360DF2A81C2DA16A46152; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=8439A1A8FBF14BFA92DF60579511A88B&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=24C8D78117E360DF2A81C2DA16A46152; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734811.1000bde1
GET

https://www.bing.com/qbox?query=virus+d&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=1e6e640289ae476e89525a4b7742186e&oit=4&cp=7&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+d&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=1e6e640289ae476e89525a4b7742186e&oit=4&cp=7&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 296
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3db565742218a2530d3cf81c5a1
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-sgZXpFUBzIz8u41XM600DX8sILRVvJBSS9IcBSiWdjg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:51 GMT
set-cookie: MUID=2637F5ED1D8A6E991DA9E0B61C696F82; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=2637F5ED1D8A6E991DA9E0B61C696F82; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=11C7221B3F6E61B72D8737403E8D601C; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=0C140A44ACB242B7854C335C678D5EB3&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=11C7221B3F6E61B72D8737403E8D601C; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734811.1000be81
GET

https://www.bing.com/qbox?query=virus+do&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=36a1b0a2f3f14db6bae105b33fccadff&oit=4&cp=8&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+do&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=36a1b0a2f3f14db6bae105b33fccadff&oit=4&cp=8&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 283
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3db1a3d43c3acf5d3c2cb47f2eb
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-wYnSGDj0zEjJl64dGBc/bVpg8nWzttc2rYeTW2uybeA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:51 GMT
set-cookie: MUID=074CD362F8C46DC9299BC639F9346C28; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=074CD362F8C46DC9299BC639F9346C28; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=1BF15E9399596DDA3BE94BC898A96C0A; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=12BA6931FD74479BB6B6DCA7D9210488&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=1BF15E9399596DDA3BE94BC898A96C0A; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734811.1000bef1
GET

https://www.bing.com/qbox?query=virus+dow&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=4b3c5b7c4e314dc4a1c9b33a94f26b1b&oit=4&cp=9&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+dow&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=4b3c5b7c4e314dc4a1c9b33a94f26b1b&oit=4&cp=9&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 284
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3db574a45b3a88bfbc92b887ed3
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IV4g5o8rn1Tz8nt1EBvzgsEhpe9PITDEoKF0F+SFCVM='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:51 GMT
set-cookie: MUID=238AAF3B663A668122E0BA60675867DC; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=238AAF3B663A668122E0BA60675867DC; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=228A9FEABD6662031F768AB1BC0463C9; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=4A7F9970E4414B19BB7B945856844C06&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=228A9FEABD6662031F768AB1BC0463C9; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734811.1000bfb4
GET

https://www.bing.com/qbox?query=virus+down&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=d30e2ef590e84efe9debc1702795c4dc&oit=4&cp=10&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+down&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=d30e2ef590e84efe9debc1702795c4dc&oit=4&cp=10&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 282
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dba142446ea5c0fb4cf4d4e48b
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-V5MD8k6pbVJj00UWu+VM1elLGALh5e5AmHj6DlHU0jI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:51 GMT
set-cookie: MUID=1D87E4E8E0FD6C523E98F1B3E1746D1A; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=1D87E4E8E0FD6C523E98F1B3E1746D1A; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=179939EA56DB6FFF0C8A2CB157526E64; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=7C7399334C804CB299B4AA5F79F8E940&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:51 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=179939EA56DB6FFF0C8A2CB157526E64; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734811.1000c038
GET

https://www.bing.com/qbox?query=virus+downl&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=df14cee750eb411989187784e58fcc30&oit=4&cp=11&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+downl&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=df14cee750eb411989187784e58fcc30&oit=4&cp=11&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 284
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dc69ff43dba925bb7c7f2c1409
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-Tn2U8rgG1nmWyMV+Rb18HsF4M5TBGkqjkDftKjMNTnQ='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:52 GMT
set-cookie: MUID=03EB40BCB574621123D855E7B43C6382; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=03EB40BCB574621123D855E7B43C6382; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=117515ED900F6C48214400B691476DBE; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=57E7EC5D7D794A63ADFA6034B1B06165&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=117515ED900F6C48214400B691476DBE; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734812.1000c180
GET

https://www.bing.com/qbox?query=virus+downlo&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=32f09ee6fe804a74b3fdfcf0d08ebdd7&oit=4&cp=12&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+downlo&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=32f09ee6fe804a74b3fdfcf0d08ebdd7&oit=4&cp=12&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 281
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dcd9bf4fd29d5022fdc3eb6ac4
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-BbKr8kYSkgPiYaTsRzmagc5dDK1NI+E0DKZqjfZNrpo='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:52 GMT
set-cookie: MUID=25DCD9DDDC456F8D3B56CC86DD186EC6; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=25DCD9DDDC456F8D3B56CC86DD186EC6; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2665B2B224856FC52719A7E925D86EDD; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=EB65390F2B0543EFB8832980F2C22A87&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2665B2B224856FC52719A7E925D86EDD; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734812.1000c285
GET

https://www.bing.com/qbox?query=virus+downloa&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=7151f521d5a54445b692ceaac3d86c3b&oit=4&cp=13&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+downloa&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=7151f521d5a54445b692ceaac3d86c3b&oit=4&cp=13&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 279
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dc81b6445f8c9cb806ab970b73
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-IbnQy/G/SYTvYNlppgfo0moVSfIJAaJN2DKzzKsEzZI='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:52 GMT
set-cookie: MUID=34674C472240619D1783591C23986042; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=34674C472240619D1783591C23986042; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=2F29780A35CD667B34C96D5134156779; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=09026FFCF55B4AC6B5C0BB254A0523BE&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=2F29780A35CD667B34C96D5134156779; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734812.1000c2f0
GET

https://www.bing.com/qbox?query=virus+download&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=6a49a2021cb149a9aa5ca923535d596e&oit=4&cp=14&pgcl=4

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /qbox?query=virus+download&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=6a49a2021cb149a9aa5ca923535d596e&oit=4&cp=14&pgcl=4 HTTP/2.0
host: www.bing.com
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 277
content-type: application/json; charset=utf-8
cache-control: public, max-age=300
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dc009949329f7719c840deb140
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-ynPtvpVZZQoafFUIBf73MCQtXJxhRro+3lEsekTDHjE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:52 GMT
set-cookie: MUID=05259379F0AD66883C0B8622F18D6732; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=05259379F0AD66883C0B8622F18D6732; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=228B58556A2360151B7D4D0E6B036108; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: SRCHD=AF=NOFORM; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=783B7DA87C2F40F0910E02A4ABBF855D&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: _SS=SID=228B58556A2360151B7D4D0E6B036108; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734812.1000c35f
GET

https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-type: text/html; charset=utf-8
cache-control: private, max-age=0
content-encoding: br
expires: Fri, 20 Dec 2024 22:45:52 GMT
vary: Accept-Encoding
x-eventid: 6765f3dcd653484392f2650efd41f8dc
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-3VPkO7RJBbCpMqjaYgxtZdO2qOZkR+sip2w6h/8IXIg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp&ndcParam=QWthbWFp"}]}
report-to: {"group":"crossorigin-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingserp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.01,"failure_fraction":1.0,"include_subdomains":true}
cross-origin-embedder-policy-report-only: 'require-corp; report-to=\"crossorigin-errors\"'
cross-origin-opener-policy-report-only: 'same-origin; report-to=\"crossorigin-errors\"'
date: Fri, 20 Dec 2024 22:46:52 GMT
set-cookie: MUID=31D52B71B7E265B321923E2AB69E642B; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF; domain=.bing.com; path=/; HttpOnly
set-cookie: _EDGE_V=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHS=PC=U531; domain=.bing.com; path=/; secure; SameSite=None
set-cookie: SRCHD=AF=ANAB01; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHUSR=DOB=20241220; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
set-cookie: SRCHHPGUSR=SRCHLANG=en; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:52 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734812.1000c40e
set-cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS; Domain=.bing.com; Path=/; Expires=Sat, 21 Dec 2024 00:46:52 GMT; Max-Age=7200
GET

https://www.bing.com/sa/simg/Roboto_Regular.woff2

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /sa/simg/Roboto_Regular.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

content-length: 15436
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661b7fb4a5a64a25bfe52f31cdb238a2
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-Dc7XB6hZwYD7vh6hxGugqMXoa2v2PSgRTnvZk3RerSA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c4a7
GET

https://www.bing.com/sa/simg/Roboto_Semibold.woff2

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /sa/simg/Roboto_Semibold.woff2 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: font
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

content-length: 15344
content-type: font/woff2
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 661aafd86e0b4a0c8792a1f83cd446ca
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'nonce-3vTAQNKq8Us8FU4N1YKatO/0vBvTusxxyorbrP2yIH8='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c4a6
GET

https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

expires: Sun, 08 Dec 2024 17:12:12 GMT
last-modified: Tue, 24 Sep 2024 05:57:20 GMT
etag: 0x8DCDC5DC0B634E9
cache-control: public, no-transform, max-age=84383
akamai-amd-bc-debug: [a=92.123.132.73,b=1783832078,c=c,d=1734603897,h=304,k=0,l=1,n=GB_EN_LONDON,o=20940,r=1]
content-length: 10060
content-type: image/png
content-md5: NyL0K09FbOsKFVWkE+stgw==
x-ms-request-id: 387df096-201e-0024-0e22-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c4c0
POST

https://www.bing.com/fd/ls/lsp.aspx?

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /fd/ls/lsp.aspx? HTTP/2.0
host: www.bing.com
content-length: 372
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

content-length: 4286
content-type: image/x-icon
cache-control: public, max-age=15552000
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
x-eventid: 6672dcd073a742838654c3093e6e7562
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c652
GET

https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /sa/simg/favicon-trans-bg-blue-mg.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

expires: Sat, 21 Dec 2024 04:56:47 GMT
last-modified: Wed, 20 Nov 2024 06:08:28 GMT
etag: 0x8DD0929C09196E1
cache-control: public, no-transform, max-age=35676
content-length: 7650
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: x2EwVHeB7ANtgfiXW7B0ZQ==
x-ms-request-id: cc00ee3a-201e-006b-5776-3bb7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.646e5668.1732138139.51dd4d4
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c654
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:297,%22SE%22:-1,%22TC%22:-1,%22H%22:378,%22BP%22:388,%22CT%22:392,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4287,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:297,%22SE%22:-1,%22TC%22:-1,%22H%22:378,%22BP%22:388,%22CT%22:392,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4287,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c633
GET

https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
dnt: 1
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c653
GET

https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241220

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241220 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: SRCHHPGUSR=SRCHLANG=en
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS

Response

HTTP/2.0 200

content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=21600
content-encoding: br
last-modified: Wed, 13 Nov 2024 18:09:46 GMT
vary: Accept-Encoding
x-ms-request-id: 3c7e8b6e-d01e-0004-39b5-52ea8c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref: 20241220T080000Z-18576787c45mvd4qhC1DB1cu9g00000008zg0000000049db
x-fd-int-roxy-purgeid: 0
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
x-ceto-ref: 676524008c504c73ab752d3e7a9e6234|AFD:676524008c504c73ab752d3e7a9e6234|2024-12-20T08:00:00.730Z
content-length: 48856
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c679
GET

https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g

Response

HTTP/2.0 200

expires: Sat, 14 Dec 2024 21:31:07 GMT
last-modified: Tue, 24 Sep 2024 06:45:05 GMT
etag: 0x8DCDC646C9AF5F4
cache-control: public, no-transform, max-age=306141
content-length: 1929
content-type: image/png
content-md5: TBVfy13T2kZEUa0kC23mBg==
x-ms-request-id: 1d60634c-401e-0052-2736-1bf762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a5777b5c.1728579933.132940b9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
timing-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c681
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812165%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812165%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:12 GMT
etag: 0x8DCDC608780CE8B
content-length: 512
content-type: image/svg+xml
content-md5: G0HPjgI1nZPfetni3YDkOw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f5f97b5b-c01e-002e-02f1-176a57000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=140452
expires: Sun, 22 Dec 2024 13:47:45 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c711
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:02:04 GMT
etag: 0x8DCDC5E6A2D8636
content-length: 349
content-type: image/svg+xml
content-md5: iRh5eBPrKqjGuvgWi/nStw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5639f321-d01e-0018-37f5-17c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=176606
expires: Sun, 22 Dec 2024 23:50:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c714
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812168%2C%22Name%22%3A%224g%22%2C%22FID%22%3A%22NTWKTYP%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812168%2C%22Name%22%3A%224g%22%2C%22FID%22%3A%22NTWKTYP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:27:44 GMT
etag: 0x8DCEC864714A6D6
content-length: 2352
content-type: image/svg+xml
content-md5: QrO8sPEThHUQpqFL2mecsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7addc4a1-a01e-0035-3764-2144c5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=353093
expires: Wed, 25 Dec 2024 00:51:46 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c715
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:19:31 GMT
etag: 0x8DCDC60DA2A4DD0
content-length: 743
content-type: image/svg+xml
content-md5: FMGFWdCq/oaMJPflY81M7Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0dd9b3c0-f01e-000f-2e02-170766000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=303092
expires: Tue, 24 Dec 2024 10:58:25 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c716
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c70f
GET

https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c70e
GET

https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c710
GET

https://r.bing.com/rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c70c
GET

https://r.bing.com/rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c70d
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c836
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c83a
GET

https://www.bing.com/images/sbi?mmasync=1&ig=E7D37800137E49298A37BC00E0ACD1F9&iid=.5101&ptn=Web&ep=0&iconpl=1

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /images/sbi?mmasync=1&ig=E7D37800137E49298A37BC00E0ACD1F9&iid=.5101&ptn=Web&ep=0&iconpl=1 HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-length: 15999
content-type: text/html; charset=utf-8
cache-control: private
content-encoding: br
vary: Accept-Encoding
x-eventid: 6765f3dd3e3c4adba8c54d3a7c2b3433
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-/LRNe77EumCWCdRF3SLhd2sUdlXFJT24fyZwAfuuIUs='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:53 GMT
set-cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:53 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; domain=.bing.com; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
set-cookie: SRCHS=; expires=Thu, 01-Jan-1970 08:00:00 GMT; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c870
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812170%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812171%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812177%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1734734812179%2C%22Name%22%3A455%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812180%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812181%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812361%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812170%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812171%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812177%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1734734812179%2C%22Name%22%3A455%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812180%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812181%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812361%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0
cookie: SRCHUSR=DOB=20241220&T=1734734812000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c894
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1734734812600%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1069%2C%22time%22%3A1076%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1734734812622%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1734734812600%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1069%2C%22time%22%3A1076%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1734734812622%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0
cookie: SRCHUSR=DOB=20241220&T=1734734812000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c899
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0
cookie: SRCHUSR=DOB=20241220&T=1734734812000

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c8a4
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0
cookie: SRCHUSR=DOB=20241220&T=1734734812000

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:34 GMT
etag: 0x8DCDC64A18F365B
content-length: 671
content-type: image/svg+xml
content-md5: 2e0aQjQvN2lVcUGQcPjoGA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 08fd2788-101e-0005-299e-161eef000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=209931
expires: Mon, 23 Dec 2024 09:05:44 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c8bf
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 1101
content-type: image/svg+xml
content-md5: kc0Rz8ymXPrOlhUyaNcfYw==
last-modified: Mon, 14 Oct 2024 19:38:51 GMT
etag: 0x8DCEC87D4AE1626
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bae772d3-401e-003f-6bd1-2c5d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=62679
expires: Sat, 21 Dec 2024 16:11:33 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8c0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:25 GMT
etag: 0x8DCDC5EE1BFCC0A
content-length: 282
content-type: image/svg+xml
content-md5: 44eVtjQVTsH/Qca82lTuUg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 73d327a3-201e-006b-142e-16b7c6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=148919
expires: Sun, 22 Dec 2024 16:08:52 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c8c1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 964
content-type: image/svg+xml
content-md5: iOPtPdfu4TP3P/udNrBLbw==
last-modified: Mon, 15 Aug 2022 20:49:31 GMT
etag: 0x8DA7EFFA703EB5F
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b8d4fb37-c01e-008b-0cf0-081e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.0a7b1060.1686747743.231c1613
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
akamai-grn: 0.157b1060.1686747764.1d5c2bc1
akamai-grn: 0.1b7b1060.1687776384.1457d6ce
cache-control: public, no-transform, max-age=8285980
expires: Wed, 26 Mar 2025 20:26:33 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c8c2
timing-allow-origin: *
GET

https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:54:00 GMT
etag: 0x8DCDC65AB4005D8
content-length: 1391
content-type: image/svg+xml
content-md5: YgWAZX6KRbSnuEULjaXNMg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e0920f1e-b01e-0021-40b6-1887a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=331325
expires: Tue, 24 Dec 2024 18:48:58 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734813.1000c8c3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:16 GMT
etag: 0x8DCDC6089E98574
akamai-grn: 0.b58f655f.1734265173.26c6f596
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1111
content-type: image/svg+xml
content-md5: wEyINKyRgCGG5s5neuSonQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4a63813d-301e-0074-088f-166cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=275990
expires: Tue, 24 Dec 2024 03:26:44 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d0
timing-allow-origin: *
GET

https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Mon, 15 Aug 2022 17:39:27 GMT
etag: 0x8DA7EE519EF54EF
akamai-grn: 0.19fd4817.1699775190.19e2dda6
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 726
content-type: image/svg+xml
content-md5: ZgHkolq4RyA+EBWzJRSxbA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d46b8e76-f01e-0020-517e-0a9bf6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.1efd4817.1701123842.3b4e7f5b
cache-control: public, no-transform, max-age=6439229
expires: Wed, 05 Mar 2025 11:27:23 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8cf
timing-allow-origin: *
GET

https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:54:04 GMT
etag: 0x8DCDC5D4C424AE8
content-length: 5387
content-type: image/jpeg
content-md5: adFid0+JT/i5IDMON2t6Yg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8f55db75-401e-0016-1dc2-172b0e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=175844
expires: Sun, 22 Dec 2024 23:37:38 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:05:48 GMT
etag: 0x8DCDC5EEFB0049C
content-length: 6817
content-type: image/jpeg
content-md5: DEHuMbBOl4tIgtF2kPA6Og==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 42a58b94-c01e-0048-0d59-17d80d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=79850
expires: Sat, 21 Dec 2024 20:57:44 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:51 GMT
etag: 0x8DCDC65ED9B19A0
content-length: 4409
content-type: image/jpeg
content-md5: qYoIvbmbhCLJ3J1v3ZOHww==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0123ab47-601e-0001-11da-15eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=357579
expires: Wed, 25 Dec 2024 02:06:33 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:43:17 GMT
etag: 0x8DCDC642C51AEC8
content-length: 4934
content-type: image/jpeg
content-md5: /aLOrgZ5YRk35ucfcBo2qw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d1ed4238-301e-005d-7796-161a94000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a7777b5c.1728091202.48e8067
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=278173
expires: Tue, 24 Dec 2024 04:03:07 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d5
timing-allow-origin: *
GET

https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:55 GMT
etag: 0x8DCDC63FB5BC9CB
content-length: 4547
content-type: image/jpeg
content-md5: eu9Mz25HuboDg2XNPR9Wkw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 09ffe763-201e-0024-1c98-1673de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=139737
expires: Sun, 22 Dec 2024 13:35:51 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d6
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:56 GMT
etag: 0x8DCDC65F09D13C1
content-length: 5944
content-type: image/jpeg
content-md5: 9ucNopg0mtlCFfC0podQNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ab6448f5-c01e-0025-6b21-187223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=212165
expires: Mon, 23 Dec 2024 09:42:59 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d7
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:58:31 GMT
etag: 0x8DCDC664D1860E2
content-length: 3814
content-type: image/jpeg
content-md5: KBVwYR+JIZqXDyWJ+YoJ2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ec8f7ea-901e-0072-119f-199bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=79613
expires: Sat, 21 Dec 2024 20:53:47 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734813.1000c8a3
GET

https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:49:39 GMT
etag: 0x8DCDC650FC3D927
content-length: 3791
content-type: image/jpeg
content-md5: KZpHmi9/HzDQlUXKjMXRYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: caf5029c-101e-0063-5c90-15acb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=194791
expires: Mon, 23 Dec 2024 04:53:25 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c8d1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
POST

https://www.bing.com/rewardsapp/ncheader?ver=52251624&IID=SERP.5056&IG=E7D37800137E49298A37BC00E0ACD1F9

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /rewardsapp/ncheader?ver=52251624&IID=SERP.5056&IG=E7D37800137E49298A37BC00E0ACD1F9 HTTP/2.0
host: www.bing.com
content-length: 4
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

content-length: 772
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6765f3dea75543a2b1ac0dfcea4084b9
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-qTj91TwLE2nj3K/zNYoTwA63DSpgTlaWNt5sClBLqVE='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6765f3dea75543a2b1ac0dfcea4084b9|AFD:6765f3dea75543a2b1ac0dfcea4084b9|2024-12-20T22:46:54.027Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000c8f0
POST

https://www.bing.com/rewardsapp/reportActivity?IG=E7D37800137E49298A37BC00E0ACD1F9&IID=SERP.5066&q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /rewardsapp/reportActivity?IG=E7D37800137E49298A37BC00E0ACD1F9&IID=SERP.5066&q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531 HTTP/2.0
host: www.bing.com
content-length: 175
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: application/x-www-form-urlencoded
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:40:29 GMT
etag: 0x8DCEC880F396E3D
content-length: 269
content-type: text/css
content-encoding: br
content-md5: Twb1SQrgn66TMkCHmLv8IQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5c783b07-601e-000a-2332-1ff319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=327323
expires: Tue, 24 Dec 2024 17:42:17 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c95c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:29:57 GMT
etag: 0x8DCEC86967FA2A4
content-type: text/css; charset=utf-8
content-md5: yxQVEL8D2yYKzOkWuxDcBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8c7a6c74-e01e-0054-6fe1-20001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 375
cache-control: public, no-transform, max-age=164946
expires: Sun, 22 Dec 2024 20:36:00 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c95e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:10:08 GMT
etag: 0x8DCDC67EC841DCF
content-length: 1343
content-type: text/css
content-encoding: br
content-md5: DnViWNsgH/Vlo3SrH5gEzg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9954874e-c01e-006a-6605-1ab63b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=48062
expires: Sat, 21 Dec 2024 12:07:56 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c95f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0
cookie: _C_ETH=1

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:41:12 GMT
etag: 0x8DCDC63E1AC19C2
content-length: 324
content-type: text/css
content-encoding: br
content-md5: zul1ioyI5qjKzvVMsqd8eQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 78028e9b-b01e-0021-58f1-1687a1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=221603
expires: Mon, 23 Dec 2024 12:20:17 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.3e367a5c.1734734814.1000c95b
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/css,*/*;q=0.1
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0
cookie: _C_ETH=1

Response

HTTP/2.0 200

content-length: 993
content-type: text/html; charset=utf-8
cache-control: no-cache
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6765f3de1f7144b9bd427a10c6c0560b
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-TFUNJn/DmOQLZDkGvraJ9vgdYa+9jSrkJbSGhZt4AUg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-ceto-ref: 6765f3de1f7144b9bd427a10c6c0560b|AFD:6765f3de1f7144b9bd427a10c6c0560b|2024-12-20T22:46:54.085Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: _C_ETH=1; domain=.bing.com; path=/; secure; httponly
set-cookie: _C_Auth=
set-cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=; domain=.bing.com; expires=Sat, 20-Dec-2025 22:46:54 GMT; path=/; secure; SameSite=None
set-cookie: _Rwho=u=d&ts=2024-12-20; domain=.bing.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0; domain=.bing.com; path=/; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000c942
POST

https://www.bing.com/orgid/idtoken/conditional

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /orgid/idtoken/conditional HTTP/2.0
host: www.bing.com
content-length: 693
cache-control: max-age=0
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
origin: https://login.microsoftonline.com
upgrade-insecure-requests: 1
dnt: 1
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://login.microsoftonline.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6765f3dedf144894a474e3ca007702d4
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-DZmoANbcsvggyEj/7T0dHPRfu7WTH+2ls1y4OptHpDA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 595FCA48224748FFB19F989481976ED2 Ref B: LON601060104034 Ref C: 2024-12-20T22:46:54Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; HttpOnly
set-cookie: _EDGE_S=SID=3BB2EB4BE482645A322BFE10E51D65A0; domain=.bing.com; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000c9b9
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caa3
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}] HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cabe
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812747%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812749%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812778%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812827%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812965%2C%22Name%22%3A%22idleTabTrackerInitialized%22%2C%22FID%22%3A%22RewardsIdleTabTracker%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1734734812983%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1734734813029%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812747%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812749%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812778%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812827%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812965%2C%22Name%22%3A%22idleTabTrackerInitialized%22%2C%22FID%22%3A%22RewardsIdleTabTracker%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1734734812983%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1734734813029%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caec
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caed
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caee
GET

https://www.bing.com/geolocation/write?isBlocked=true&sid=0FDDFE0CB1E064AA035BEB57B09C65BF&clientsid=undefined

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /geolocation/write?isBlocked=true&sid=0FDDFE0CB1E064AA035BEB57B09C65BF&clientsid=undefined HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caf0
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734813133%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734813133%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caf1
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caf4
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

cache-control: private
content-length: 1
content-type: text/html
content-encoding: br
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6765f3de4dc147878667fb0d674e8d91
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-201hkagcMMKs5FX1m3UMfLt16BvjD5agu2R8+Cwge6E='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 4CD8EEBDD7D8401B947D39F57A72E9F5 Ref B: LON601060108011 Ref C: 2024-12-20T22:46:54Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; HttpOnly
set-cookie: USRLOC=HS=1&BLOCK=TS=241220224654; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; secure; HttpOnly; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caef
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813137%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813137%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000caf5
GET

https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1734734813178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22634.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221631.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813219%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1734734813178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22634.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221631.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813219%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654

Response

HTTP/2.0 200

content-length: 0
access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cb51
GET

https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /secure/Passport.aspx?popup=1&ssl=1 HTTP/2.0
host: www.bing.com
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654

Response

HTTP/2.0 200

cache-control: no-cache,no-store
pragma: no-cache
content-length: 236
content-type: text/html; charset=utf-8
content-encoding: br
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
x-eventid: 6765f3de1d6f4dfe9aa03501544e6d11
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-94NLcPSHflfN/JI9BQoe4yx0vyv58S2LYFQPvTBJC28='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 0757A68AF054492A8F69CD43DBB05119 Ref B: LON601060108060 Ref C: 2024-12-20T22:46:54Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: .MSA.Auth=; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.bing.com; path=/; secure; samesite=lax; httponly
set-cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cbf1
POST

https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=E7D37800137E49298A37BC00E0ACD1F9&ID=SERP,5220.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D31d52b71-b7e2-65b3-2192-3e2ab69e642b%26psq%3Dvirus%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /fd/ls/GLinkPingPost.aspx?IG=E7D37800137E49298A37BC00E0ACD1F9&ID=SERP,5220.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D31d52b71-b7e2-65b3-2192-3e2ab69e642b%26psq%3Dvirus%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1 HTTP/2.0
host: www.bing.com
content-length: 0
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain;charset=UTF-8
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654

Response

HTTP/2.0 200

cache-control: private
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
access-control-allow-origin: *
x-eventid: 6765f3de29fe4383ba0140486410826d
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-rETFQ58T+i2kuMUKGjhUtECFinZC6N53OMP2Cnn5sqA='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
x-msedge-ref: Ref A: 9F4F575439A245728782B750C120C892 Ref B: LON601060104042 Ref C: 2024-12-20T22:46:54Z
content-length: 0
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; HttpOnly
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cc0a
GET

https://www.bing.com/ck/a?!&&p=40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA&ptn=3&ver=2&hsh=4&fclid=31d52b71-b7e2-65b3-2192-3e2ab69e642b&psq=virus+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /ck/a?!&&p=40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA&ptn=3&ver=2&hsh=4&fclid=31d52b71-b7e2-65b3-2192-3e2ab69e642b&psq=virus+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1 HTTP/2.0
host: www.bing.com
ect: 4g
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-arch: "x86"
sec-ch-ua-platform: "Windows"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model: ""
dnt: 1
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654

Response

HTTP/2.0 200

cache-control: no-cache, must-revalidate
pragma: no-cache
content-length: 1200
content-type: text/html; charset=UTF-8
content-encoding: gzip
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Accept-Encoding
access-control-allow-origin: *
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E74B2C4AB20D468CA612D385689CB6E0 Ref B: LON601060104034 Ref C: 2024-12-20T22:46:54Z
date: Fri, 20 Dec 2024 22:46:54 GMT
set-cookie: MSPTC=UJM6YaIFaxW_MkxGKwry454bEZRRjcNGOW89Gb0VDec; domain=.bing.com; expires=Wed, 14-Jan-2026 22:46:54 GMT; path=/; Partitioned; secure; SameSite=None
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cc89
GET

https://www.bing.com/favicon.ico

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /favicon.ico HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654
cookie: MSPTC=UJM6YaIFaxW_MkxGKwry454bEZRRjcNGOW89Gb0VDec

Response

HTTP/2.0 200

cache-control: public, max-age=15552000
content-length: 4286
content-type: image/x-icon
last-modified: Mon, 01 Jan 1601 00:00:00 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FF7F9C6CB1714EC59EFAB3D4C612DCB2 Ref B: LTSEDGE1121 Ref C: 2023-01-04T16:48:40Z
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cccd
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 19929
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/plain
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654
cookie: MSPTC=UJM6YaIFaxW_MkxGKwry454bEZRRjcNGOW89Gb0VDec

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cce9
POST

https://www.bing.com/fd/ls/lsp.aspx

msedge.exe

Remote address:

88.221.135.34:443

Request

POST /fd/ls/lsp.aspx HTTP/2.0
host: www.bing.com
content-length: 285
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
content-type: text/xml
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654
cookie: MSPTC=UJM6YaIFaxW_MkxGKwry454bEZRRjcNGOW89Gb0VDec

Response

HTTP/2.0 204

access-control-allow-origin: *
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734814.1000cce3
GET

https://www.bing.com/ipv6test/test?FORM=MONITR

msedge.exe

Remote address:

88.221.135.34:443

Request

GET /ipv6test/test?FORM=MONITR HTTP/2.0
host: www.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
sec-ch-ua-arch: "x86"
sec-ch-ua-full-version: "92.0.902.67"
sec-ch-ua-platform-version: "10.0"
ect: 4g
sec-ch-ua-model:
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: MUIDB=31D52B71B7E265B321923E2AB69E642B
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=&WTS=63870331612
cookie: USRLOC=HS=1&BLOCK=TS=241220224654
cookie: MSPTC=UJM6YaIFaxW_MkxGKwry454bEZRRjcNGOW89Gb0VDec

Response

HTTP/2.0 200

content-length: 64
content-type: text/html; charset=utf-8
access-control-allow-origin: https://www.bing.com
cache-control: no-cache, no-store, must-revalidate
content-encoding: br
expires: -1
pragma: no-cache
vary: Accept-Encoding
x-eventid: 6765f3e0cdc94ddbad61fea23e6add1e
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-X4lK9hT+iiMLTwIzCGZdUjoZeLfLfutVtAh5IJGcTwk='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
p3p: CP="NON UNI COM NAV STA LOC CURa DEVa PSAa PSDa OUR IND"
date: Fri, 20 Dec 2024 22:46:56 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.3e367a5c.1734734816.1000d150
DNS

34.135.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.135.221.88.in-addr.arpa

IN PTR

Response

34.135.221.88.in-addr.arpa

IN PTR

a88-221-135-34deploystaticakamaitechnologiescom
DNS

34.135.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

34.135.221.88.in-addr.arpa

IN PTR

Response

34.135.221.88.in-addr.arpa

IN PTR

a88-221-135-34deploystaticakamaitechnologiescom
DNS

th.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

th.bing.com

IN A

Response

th.bing.com

IN CNAME

p-th.bing.com.trafficmanager.net

p-th.bing.com.trafficmanager.net

IN CNAME

th.bing.com.edgekey.net

th.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

95.101.143.201

e86303.dscx.akamaiedge.net

IN A

88.221.135.27

e86303.dscx.akamaiedge.net

IN A

88.221.135.33

e86303.dscx.akamaiedge.net

IN A

88.221.135.25
DNS

r.bing.com

msedge.exe

Remote address:

8.8.8.8:53

Request

r.bing.com

IN A

Response

r.bing.com

IN CNAME

p-static.bing.trafficmanager.net

p-static.bing.trafficmanager.net

IN CNAME

r.bing.com.edgekey.net

r.bing.com.edgekey.net

IN CNAME

e86303.dscx.akamaiedge.net

e86303.dscx.akamaiedge.net

IN A

88.221.135.27

e86303.dscx.akamaiedge.net

IN A

95.101.143.201

e86303.dscx.akamaiedge.net

IN A

88.221.135.34

e86303.dscx.akamaiedge.net

IN A

88.221.135.33
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=2291818
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.6220197
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.6A0NTNRLU9Ju4-KYMJINxwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OVP.6A0NTNRLU9Ju4-KYMJINxwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2242
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.6220199
GET

https://th.bing.com/th?q=Free+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?q=Free+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2274
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.622019a
GET

https://th.bing.com/th?q=Install+Virus&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?q=Install+Virus&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1982
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.622019d
GET

https://th.bing.com/th?q=Downloading+Viruses&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?q=Downloading+Viruses&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2605
x-check-cacheable: YES
cache-control: public, max-age=5184000
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.622019e
GET

https://th.bing.com/th?q=Virus+Download+to+Crash+Computer&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?q=Virus+Download+to+Crash+Computer&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 3279
cache-control: public, max-age=2226765
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b0
x-check-cacheable: YES
GET

https://th.bing.com/th?q=Download+Virus+exe&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?q=Download+Virus+exe&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=2291659
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b5
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 944
cache-control: public, max-age=2291763
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MEM_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 616
cache-control: public, max-age=545735
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MEM_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 618
cache-control: public, max-age=2111142
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=85d4c4&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=85d4c4&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 588
x-check-cacheable: YES
cache-control: public, max-age=1684037
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201cc
GET

https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 695
cache-control: public, max-age=200483
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (A)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d3
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 911
cache-control: public, max-age=1183010
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d4
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OIP.pvrSFwUIfmriYttj2_rFtAAAAA&w=80&h=80&c=1&vt=10&bgcl=2dd38a&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OIP.pvrSFwUIfmriYttj2_rFtAAAAA&w=80&h=80&c=1&vt=10&bgcl=2dd38a&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 618
cache-control: public, max-age=1181017
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_HIT from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d8
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.310ff766-5c55-4da5-a95c-4a0f7f619bd9&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.310ff766-5c55-4da5-a95c-4a0f7f619bd9&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 13270
x-check-cacheable: YES
cache-control: public, max-age=906873
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201cd
GET

https://th.bing.com/th?id=OIP.mk2zSSoskB4iAJl-n--DXAHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OIP.mk2zSSoskB4iAJl-n--DXAHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2467
x-check-cacheable: YES
cache-control: public, max-age=1053893
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d9
GET

https://th.bing.com/th?id=ODLS.bee2636a-5d38-49e7-946e-f096f85c1e92&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.bee2636a-5d38-49e7-946e-f096f85c1e92&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 815
x-check-cacheable: YES
cache-control: public, max-age=1214352
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d5
GET

https://th.bing.com/th?id=ODLS.88940933-7a35-4d8c-9f1b-b2b9808e8192&w=16&h=16&c=7&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.88940933-7a35-4d8c-9f1b-b2b9808e8192&w=16&h=16&c=7&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1967
x-check-cacheable: YES
cache-control: public, max-age=575372
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d7
GET

https://th.bing.com/th?id=ODLS.82545e96-2f89-4574-8dfc-97c41e377e64&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.82545e96-2f89-4574-8dfc-97c41e377e64&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1967
x-check-cacheable: YES
cache-control: public, max-age=1715428
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b4
GET

https://th.bing.com/th?id=OIP.wRsmRaKmT0ULs6BzWVOrbAHaEE&w=80&h=80&c=1&vt=10&bgcl=821a4e&r=0&o=6&pid=5.1

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OIP.wRsmRaKmT0ULs6BzWVOrbAHaEE&w=80&h=80&c=1&vt=10&bgcl=821a4e&r=0&o=6&pid=5.1 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1710
cache-control: public, max-age=1209564
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201b7
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1281
cache-control: public, max-age=1209593
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201c9
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 2035
cache-control: public, max-age=1209562
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.62201d6
x-check-cacheable: YES
GET

https://th.bing.com/th?id=ODLS.77471749-fa00-485a-9bc3-67c967dc1567&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=ODLS.77471749-fa00-485a-9bc3-67c967dc1567&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: SRCHS=PC=U531
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: SRCHUSR=DOB=20241220
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9733
cache-control: public, max-age=1209600
date: Fri, 20 Dec 2024 22:46:53 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734813.6220198
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.4NUdTIdaDS1ch-hbwNeS-wHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OVP.4NUdTIdaDS1ch-hbwNeS-wHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 83160
x-check-cacheable: YES
cache-control: public, max-age=1114400
date: Fri, 20 Dec 2024 22:46:54 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734814.6220679
GET

https://th.bing.com/th?id=OVP.KEJlnOfnSJEp5nu-lGrTyQHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OVP.KEJlnOfnSJEp5nu-lGrTyQHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9161
cache-control: public, max-age=1209596
date: Fri, 20 Dec 2024 22:46:54 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734814.622067e
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP._YGclMKhMhvIjxUGUjGXqwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OVP._YGclMKhMhvIjxUGUjGXqwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9525
cache-control: public, max-age=1209600
date: Fri, 20 Dec 2024 22:46:54 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734814.622067a
x-check-cacheable: YES
GET

https://th.bing.com/th?id=OVP.HEp9u0w0WPpt_zt658tQ5wHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

msedge.exe

Remote address:

95.101.143.201:443

Request

GET /th?id=OVP.HEp9u0w0WPpt_zt658tQ5wHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7 HTTP/2.0
host: th.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-site
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: MUID=31D52B71B7E265B321923E2AB69E642B
cookie: _EDGE_S=F=1&SID=0FDDFE0CB1E064AA035BEB57B09C65BF
cookie: _EDGE_V=1
cookie: USRLOC=HS=1
cookie: SRCHD=AF=ANAB01
cookie: SRCHUID=V=2&GUID=88660AA298CD4A0F939ECCA3DC8425DE&dmnchg=1
cookie: ak_bmsc=72ED362211A44D988B8B0FB264897D70~000000000000000000000000000000~YAAQPjZ6XG+L6NWTAQAAKZdA5hoAg4k0wihxeCpIefE8BKSGTRpijzqnM/CnFJjMXfUfgYzu9/t9SD0BEejIn9pQ6HpCeSxEn1FP5Q9dvxFv6+N+bBHtxdEkU6ABs6A9tLBNdL/Kyc2th4NmQWnJ9hbR1cP3yWpt/TrrG6u+YEvYHBYTZUsfWcklagS8bcz7Ytq3wOt7sUyQFuS2FhxC9mlCqPOYExz4DBkYdYa9dTdXIC72lEiXXj9Qgjpl7fsK15zrv845jWFk8fgcdkEPWfggMOQ36+rBok0DNehVVQFaUetYHwyv/RDnOP92HhFTWGj6fNSvVG85AFbiM9U2SFbDILFH9sYTaWhufgerjmzMYgKbKoQrwIrdmmts99a3BNdytEMHJyRS
cookie: SRCHUSR=DOB=20241220&T=1734734812000
cookie: _C_ETH=1
cookie: _RwBf=r=0&ilt=1&ihpd=0&ispd=1&rc=3&rb=0&gb=0&rg=200&pc=0&mtu=0&rbb=0&g=0&cid=&clo=0&v=1&l=2024-12-20T08:00:00.0000000Z&lft=0001-01-01T00:00:00.0000000&aof=0&ard=0001-01-01T00:00:00.0000000&rwdbt=0&rwflt=0&rwaul2=0&o=2&p=&c=&t=0&s=0001-01-01T00:00:00.0000000+00:00&ts=2024-12-20T22:46:54.1001459+00:00&rwred=0&wls=&wlb=&wle=&ccp=&cpt=&lka=0&lkt=0&aad=0&TH=
cookie: _Rwho=u=d&ts=2024-12-20
cookie: _SS=PC=U531&SID=0FDDFE0CB1E064AA035BEB57B09C65BF&R=3&RB=0&GB=0&RG=200&RP=0
cookie: dsc=order=Video
cookie: SRCHHPGUSR=SRCHLANG=en&DM=0&NTWKTYP=4g&BRW=M&BRH=S&CW=1280&CH=609&SCW=1263&SCH=4287&DPR=1.0&UTC=0&PV=10.0&EXLTT=1&HV=1734734813&HVE=

Response

HTTP/2.0 200

content-type: image/jpeg
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 9524
cache-control: public, max-age=1209567
date: Fri, 20 Dec 2024 22:46:54 GMT
x-cache: TCP_MISS from a92-122-54-64.deploy.akamaitechnologies.com (AkamaiGHost/11.7.2.1-35a4fcef889a1f053c9fa641f2ccd99a) (-)
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.40367a5c.1734734814.622067d
x-check-cacheable: YES
GET

https://r.bing.com/rp/sXhRoN95PiK_x1NTP9QhFTulIcY.br.css

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/sXhRoN95PiK_x1NTP9QhFTulIcY.br.css HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: application/signed-exchange;v=b3;q=0.9,*/*;q=0.8
purpose: prefetch
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 5343
content-type: text/css
content-encoding: br
content-md5: eaGiopM41hc7que86SzRzQ==
last-modified: Wed, 18 Dec 2024 12:28:07 GMT
etag: 0x8DD1F5F6D5A1995
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c1f1810e-a01e-003e-7e0a-525cb1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1734635891.8b922b0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=305395
expires: Tue, 24 Dec 2024 11:36:48 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49607
timing-allow-origin: *
GET

https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:03 GMT
etag: 0x8DCE8C2678A65ED
akamai-grn: 0.46367a5c.1734358589.f926089
content-length: 2425
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: QLqZvnBZLjc5NijnEXP26w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2f4507f6-101e-0027-2cde-1a70d9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=314576
expires: Tue, 24 Dec 2024 14:09:49 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49699
timing-allow-origin: *
GET

https://r.bing.com/rp/dNBTn3a3hM9Xwm8cr3_ZLArCdWE.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/dNBTn3a3hM9Xwm8cr3_ZLArCdWE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 9059
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: HRP+KA37lyu2tQpyAi3Qcg==
last-modified: Wed, 04 Dec 2024 04:26:26 GMT
etag: 0x8DD141BD1646BDF
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 38b7e690-201e-0024-61c1-4c73de000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1734056441.355de731
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=87242
expires: Sat, 21 Dec 2024 23:00:55 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4969d
timing-allow-origin: *
GET

https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:02 GMT
etag: 0x8DCE8C28AC2EAB8
content-length: 2634
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YP0IUbsZfddh5LfrNKc0vw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 27aa3268-301e-0074-5e0d-236cd6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b8901002.1731409690.944a9f97
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=105573
expires: Sun, 22 Dec 2024 04:06:26 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496a9
timing-allow-origin: *
GET

https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:26:40 GMT
etag: 0x8DCDC61D9BDA003
content-length: 932
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 4vFQ72ZNf8ORyGv0/A7BUA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 837d4e76-501e-0002-1798-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=76139
expires: Sat, 21 Dec 2024 19:55:52 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496ac
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:42 GMT
etag: 0x8DCE8C30DC01669
content-type: text/javascript; charset=utf-8
content-md5: e7f/zlZuzAgnEk3uqGLnHQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 88ed3102-e01e-0076-31fe-1a6e2c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 264
vary: Accept-Encoding
cache-control: public, no-transform, max-age=74758
expires: Sat, 21 Dec 2024 19:32:51 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496ad
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 1184
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vG1h+ad2ByVr1L4MKJZ7kQ==
last-modified: Mon, 16 Dec 2024 11:02:51 GMT
etag: 0x8DD1DC12F5170F5
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9a7b2d54-b01e-0008-57e1-4ff1e3000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=68120
expires: Sat, 21 Dec 2024 17:42:13 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496bb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:11:30 GMT
etag: 0x8DCDC5FBB9234C6
content-type: text/javascript; charset=utf-8
content-md5: bJNwzHWywBuWP28bX2mBGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 605d44c1-701e-003c-2bf1-155e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 425
cache-control: public, no-transform, max-age=390678
expires: Wed, 25 Dec 2024 11:18:11 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496bc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:51 GMT
etag: 0x8DCE8C3132785D7
content-length: 5065
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zen1RFa4GLG9w/XJIRfohw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4527fc94-701e-001e-76de-1a307d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=177205
expires: Mon, 23 Dec 2024 00:00:18 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496be
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:29:32 GMT
etag: 0x8DCE8C29C4714A6
akamai-grn: 0.521a1202.1731531555.6ac5c988
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 64359
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yBOhuH8WUdZCzcrV/Ken2A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1f3ed3c1-401e-0059-09df-1aef16000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=73862
expires: Sat, 21 Dec 2024 19:17:55 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496bf
timing-allow-origin: *
GET

https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 69606
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ad+ATQX4spqIJ4t9WC3SeQ==
last-modified: Mon, 16 Dec 2024 04:25:34 GMT
etag: 0x8DD1D89AF04AAB6
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 47eff3ad-c01e-0025-7ee1-4f7223000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.bf8f655f.1734384147.1666a470
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=68180
expires: Sat, 21 Dec 2024 17:43:13 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496c3
timing-allow-origin: *
GET

https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:55:43 GMT
etag: 0x8DCDC5D86C3D99C
content-length: 308
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rimZQyGjXssDEnuSlgMaJA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: bf18684d-701e-0078-63bc-188227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=299112
expires: Tue, 24 Dec 2024 09:52:05 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:06:53 GMT
etag: 0x8DCDC5F1663B480
content-length: 714
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wQmZQwuzNQKGWvk013IgpA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6610645e-101e-002c-1bc2-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=319526
expires: Tue, 24 Dec 2024 15:32:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496cd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/n21aGRCN5EKHB3qObygw029dyNU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:52:56 GMT
etag: 0x8DCDC5D2377F40E
content-length: 156
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0ApKmxnWdlgJ/r3VvxbmFQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2e3e1981-a01e-0058-3dc9-17eeeb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=93519
expires: Sun, 22 Dec 2024 00:45:32 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496d0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:29:34 GMT
etag: 0x8DCDC6241BA29EA
content-type: text/javascript; charset=utf-8
content-md5: xl2SFLZCQEcsZUNAUSfMmA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ca734619-801e-006d-1b17-1540be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 393
cache-control: public, no-transform, max-age=79135
expires: Sat, 21 Dec 2024 20:45:48 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496d1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:55:01 GMT
etag: 0x8DCDC65D005C0E0
content-length: 430
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: l5PXwpOyUFdqY44wmnrCag==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8bb902d4-901e-0072-3e72-159bae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=82786
expires: Sat, 21 Dec 2024 21:46:39 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496cc
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:57:19 GMT
etag: 0x8DCDC66220B7293
content-length: 806
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hRrTe9xFPcEQGLGPgVvjhw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3ebc0f95-601e-0028-0205-169d2f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124913
expires: Sun, 22 Dec 2024 09:28:46 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496ce
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:36:19 GMT
etag: 0x8DCDC63331FF483
content-length: 312
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Ij6CMW7d9STrT+a4Nf7dFA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cbc4fcef-801e-004f-35b8-162e88000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=208731
expires: Mon, 23 Dec 2024 08:45:44 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496de
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:47:07 GMT
etag: 0x8DCDC64B5831289
content-length: 492
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: rSmdN6tN5TS/1yEQ8Z6pNA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7b418c73-801e-0022-3518-1684a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=241664
expires: Mon, 23 Dec 2024 17:54:37 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496df
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:27 GMT
etag: 0x8DCE8C34C6E86D0
content-length: 1532
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5WRb79OLEOB99g79FkaKhA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 88c6955a-701e-005a-3a0b-36ec11000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a4c2645f.1731530177.416e848
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=254420
expires: Mon, 23 Dec 2024 21:27:13 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e0
timing-allow-origin: *
GET

https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 399
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:58:56 GMT
x-eventid: 6759d612be6c4089b04d72a1fce5e7d3
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E040
x-as-suppresssetcookie: 1
content-security-policy-report-only: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-7DKrdt21C+fmjL9a8dTvQESOua1Y/8qRAZ1cZNmjksg='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=55721
expires: Sat, 21 Dec 2024 14:15:34 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e2
timing-allow-origin: *
GET

https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:41:54 GMT
etag: 0x8DCEC884215D06E
content-length: 772
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: yaTET5I1fmUKhVemn0wu5w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e27a8b4b-b01e-002a-217c-1e9fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=124702
expires: Sun, 22 Dec 2024 09:25:15 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:12:13 GMT
etag: 0x8DCDC5FD53B2D55
akamai-grn: 0.77d37a5c.1733909843.18c53f05
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 140
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: zk7Mu+IZ+1Afv84KFZt8XQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 678b32bb-e01e-005f-480a-17186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=63996
expires: Sat, 21 Dec 2024 16:33:29 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e5
timing-allow-origin: *
GET

https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:36 GMT
etag: 0x8DCE8C30A28A766
content-length: 1707
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: MkbY3tM5BoIJgMyWXEttiw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e3c807ce-a01e-0053-0ade-1af69f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.a1777b5c.1731632077.1360387
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=141916
expires: Sun, 22 Dec 2024 14:12:09 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e6
timing-allow-origin: *
GET

https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:26 GMT
etag: 0x8DCDC5D351B0B64
akamai-grn: 0.3c367a5c.1734130313.11f3cc16
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 626
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6Xn7G4GYLjqWVjZYfi42LQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 942ab205-401e-0070-59f5-179954000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=125768
expires: Sun, 22 Dec 2024 09:43:01 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e7
timing-allow-origin: *
GET

https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:17:19 GMT
etag: 0x8DCDC608BA54CA4
content-length: 462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: fr82fvtvcsicFIwsSPlj7g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7833081e-501e-006f-0ec0-154244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=249264
expires: Mon, 23 Dec 2024 20:01:17 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e8
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:46:13 GMT
etag: 0x8DCDC6494C9BF9A
content-length: 174
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: +jWBJey2nJqR+pG7G7E28A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7fcf8c82-301e-003b-4d01-17a8ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=69074
expires: Sat, 21 Dec 2024 17:58:07 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496ea
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:37 GMT
etag: 0x8DCE8C30A6A61DD
content-length: 7058
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: /nrOcgcgG+7k8yxsmx1J4Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4805e060-e01e-005f-4dde-1a186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=64048
expires: Sat, 21 Dec 2024 16:34:21 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e4
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 241
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 23 Sep 2024 23:41:33 GMT
x-eventid: 671e9ade67c64afba6fb8118feece63c
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP0000E12C
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-tslw9CbmAj3DVBOLLS03zESL3g+97Ufqa0RwxZYyWho='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=400970
expires: Wed, 25 Dec 2024 14:09:43 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e9
timing-allow-origin: *
GET

https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:02:01 GMT
etag: 0x8DCDC66CA2704F8
content-length: 635
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: cbryIH17LuJqgju0sWrerw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4c8af66e-001e-0033-6cab-16b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=103525
expires: Sun, 22 Dec 2024 03:32:18 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496e1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:56:27 GMT
etag: 0x8DCDC66034C9278
content-length: 507
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Tm502hkAmxWuxzxBM7uX9A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: ac5bfa43-f01e-002d-2a9a-156950000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=121166
expires: Sun, 22 Dec 2024 08:26:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496f0
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:04 GMT
etag: 0x8DCDC5CE09E00D2
content-type: text/javascript; charset=utf-8
content-md5: kdgVpI0X+oWcnOv0ZCUuIA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c27362a4-801e-0066-350e-1658ca000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 415
cache-control: public, no-transform, max-age=44442
expires: Sat, 21 Dec 2024 11:07:35 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496f1
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:50:43 GMT
etag: 0x8DCDC6535F306CD
content-length: 490
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3vstlq/a5ZcE98e8La1vPw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 78ea1ccb-501e-006f-68f7-174244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=137629
expires: Sun, 22 Dec 2024 13:00:42 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496f2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:28:19 GMT
etag: 0x8DCDC62149C3678
content-length: 386
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6W4GJTTFhKoLN+eXDWPo3Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e335d78d-401e-0052-2671-15f762000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=53371
expires: Sat, 21 Dec 2024 13:36:24 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496f3
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:15:09 GMT
etag: 0x8DCDC689FBBE351
content-length: 213
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: WEjo6St2+BsB3AUDglK12Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b22d7820-f01e-0004-0f96-151f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=151226
expires: Sun, 22 Dec 2024 16:47:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b496fb
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:16:51 GMT
etag: 0x8DCDC68DCA5DDA0
content-length: 446
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: wMjND6gwy3LKsXBo8Ww74w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 7ce62b61-701e-003c-35fd-145e4b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=198112
expires: Mon, 23 Dec 2024 05:48:45 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49703
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/QIeki3qA9hJstYBIxv5k_0WFfjA.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/QIeki3qA9hJstYBIxv5k_0WFfjA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 11 Dec 2024 16:33:51 GMT
etag: 0x8DD1A0198DC1C7C
content-length: 264
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: EhR868n6Y7vyV9RGckRxNg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 854f2fdb-201e-0006-52be-4c1de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.96777b5c.1734114312.b6a9d67
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=341718
expires: Tue, 24 Dec 2024 21:42:11 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49706
timing-allow-origin: *
GET

https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:47 GMT
etag: 0x8DCE8C2817D87DF
akamai-grn: 0.4c1a1202.1734387924.62e92022
content-length: 12101
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 63v18faN7ozJ98XstK/S+w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 44d1c45a-101e-002c-1bde-1a68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=253437
expires: Mon, 23 Dec 2024 21:10:50 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49707
timing-allow-origin: *
GET

https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:16 GMT
etag: 0x8DCE8C26ED294B5
content-length: 65123
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ImVBVQpRkRw3Uhb3GEk/ZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ecfd2e8-701e-0015-5bde-1a2809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=306099
expires: Tue, 24 Dec 2024 11:48:32 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49708
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:13 GMT
etag: 0x8DCE8C2D89FAB3C
akamai-grn: 0.b5777b5c.1733825370.75fc16e
content-type: text/javascript; charset=utf-8
content-md5: G9Suce+Oaa1LX/2Nx9LctQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 221f2fc7-501e-006f-3c09-1b4244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 19997
vary: Accept-Encoding
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=137662
expires: Sun, 22 Dec 2024 13:01:15 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49709
timing-allow-origin: *
GET

https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:31:17 GMT
etag: 0x8DCE8C2DB362309
content-length: 3498
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: qFAs4wCMzQBOlKg9KBk6eA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1c8cd8dc-201e-0060-74de-1aafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=115299
expires: Sun, 22 Dec 2024 06:48:32 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4970a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/f5TDwH_yltQlwa8Y619w2Guzln4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/f5TDwH_yltQlwa8Y619w2Guzln4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 30 Oct 2024 02:04:51 GMT
etag: 0x8DCF8873D304D50
content-length: 519
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vO6UfiqDphNDayjAYlxW2w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19c6771f-701e-0051-02ec-2af465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=374089
expires: Wed, 25 Dec 2024 06:41:42 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49710
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LDPtmbi_w4y1oa90D_hi6HqB1QI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/LDPtmbi_w4y1oa90D_hi6HqB1QI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:13:26 GMT
etag: 0x8DCDC60009B36FF
content-length: 1554
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 5UPX20ax2WExB2sNDDWlCg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5f978866-401e-003f-071c-185d4c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=112348
expires: Sun, 22 Dec 2024 05:59:21 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49711
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:22:38 GMT
etag: 0x8DCDC6149E5871E
content-length: 585
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: sbJ/BFEx86eoWqpF1v/OBg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 150042bc-501e-0002-6231-16e86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=297614
expires: Tue, 24 Dec 2024 09:27:07 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49712
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 17 Oct 2024 18:45:59 GMT
etag: 0x8DCEEDBF16716B4
content-type: text/javascript; charset=utf-8
content-md5: /wEAo+jqTIFShGVUYgIPGQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e8234102-301e-0019-6874-21c6f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 581
cache-control: public, no-transform, max-age=343487
expires: Tue, 24 Dec 2024 22:11:40 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49714
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:27:41 GMT
etag: 0x8DCE8C259F3388F
content-length: 2764
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L4IMT8TGTUrIF0wSTP5Fdg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 44d1c492-101e-002c-4cde-1a68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=204919
expires: Mon, 23 Dec 2024 07:42:12 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49723
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:00 GMT
etag: 0x8DCDC6014B09FF0
content-length: 542
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Jc7Bnfc4/wV22XT5OjPjLg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 96271d35-101e-002c-405a-1768ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=182606
expires: Mon, 23 Dec 2024 01:30:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49729
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:58:32 GMT
etag: 0x8DCDC5DEBC36F3E
content-length: 163
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ntZPQ0NwSl+Oa0DwbVn/yQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6ca70dc1-f01e-0004-5691-181f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80191
expires: Sat, 21 Dec 2024 21:03:24 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49726
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 12:21:13 GMT
etag: 0x8DCDC9361C2A9CB
content-length: 305
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: U36iFcyu8u4qPEEyCl6EBQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 8e0dc95f-701e-0015-74c6-152809000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=216583
expires: Mon, 23 Dec 2024 10:56:36 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49727
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:53:13 GMT
etag: 0x8DCDC5D2D7EB1BF
content-length: 320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: DXeqkh2i/zZTwJ5wkgDOdw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1e7cfa86-601e-000a-34f6-17f319000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70415
expires: Sat, 21 Dec 2024 18:20:28 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49728
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 182
content-type: application/x-javascript; charset=utf-8
server: Kestrel
access-control-allow-headers: *
access-control-allow-origin: *
content-encoding: br
last-modified: Mon, 14 Oct 2024 12:33:31 GMT
x-eventid: 6759d628d0ca485a8bd5267f050c6479
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, ECT, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
useragentreductionoptout: A7kgTC5xdZ2WIVGZEfb1hUoNuvjzOZX3VIV/BA6C18kQOOF50Q0D3oWoAm49k3BQImkujKILc7JmPysWk3CSjwUAAACMeyJvcmlnaW4iOiJodHRwczovL3d3dy5iaW5nLmNvbTo0NDMiLCJmZWF0dXJlIjoiU2VuZEZ1bGxVc2VyQWdlbnRBZnRlclJlZHVjdGlvbiIsImV4cGlyeSI6MTY4NDg4NjM5OSwiaXNTdWJkb21haW4iOnRydWUsImlzVGhpcmRQYXJ0eSI6dHJ1ZX0=
x-as-instrumentationoptions: AppServerLoggingMaster=1
x-as-machinename: DUBEEAP00010626
x-as-suppresssetcookie: 1
content-security-policy: script-src https: 'strict-dynamic' 'report-sample' 'wasm-unsafe-eval' 'nonce-lFXGrP+LWYj+fhjdYtdnmdLLuE3ti3WWNMWFKT8GnqY='; base-uri 'self';report-to csp-endpoint
report-to: {"group":"csp-endpoint","max_age":86400,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingcsp"}]}
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingrms"}]}
cross-origin-resource-policy: cross-origin
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":0.75}
cache-control: public, max-age=396548
expires: Wed, 25 Dec 2024 12:56:01 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4972d
timing-allow-origin: *
GET

https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:07:47 GMT
etag: 0x8DCDC5F365A1AB8
content-length: 200
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: xGpjcATT83Cyo4MSw4SamQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5a3b44f6-001e-0011-7337-16dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=132310
expires: Sun, 22 Dec 2024 11:32:03 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4972e
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:06:02 GMT
etag: 0x8DCDC675996C0F4
content-length: 1824
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3Tj2RpIK8rOoXP8XXxZasg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a214c601-b01e-002a-5c3c-179fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=161850
expires: Sun, 22 Dec 2024 19:44:23 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4972f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:57:43 GMT
etag: 0x8DCDC5DCE643BD1
content-length: 1127
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: CnBe2qUSynWF62FiKAsEfg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5fbc6c21-b01e-002a-41f9-159fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=73647
expires: Sat, 21 Dec 2024 19:14:20 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49730
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:31:17 GMT
etag: 0x8DCDC627F380DA7
akamai-grn: 0.4c1a1202.1733907895.8b8f492
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-type: text/javascript; charset=utf-8
content-md5: 1Rf0xX8VNREaPigiNASk/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: e6aac681-201e-0042-1314-16c184000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 632
cache-control: public, no-transform, max-age=391345
expires: Wed, 25 Dec 2024 11:29:18 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49731
timing-allow-origin: *
GET

https://r.bing.com/rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:19 GMT
etag: 0x8DCE8C2FFE31093
content-length: 2006
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: h74d7kzmL5ogfEui+8PbEg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: fa7c77d1-701e-0051-1cdf-1af465000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.256d1002.1728543050.26299500
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=99147
expires: Sun, 22 Dec 2024 02:19:20 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49732
timing-allow-origin: *
GET

https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:42:33 GMT
etag: 0x8DCEC88590A49A7
content-length: 1737
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ADAJbopPIaunlKI/GZphBw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0bf2c36c-f01e-004b-491d-23db0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=114750
expires: Sun, 22 Dec 2024 06:39:23 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49733
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:28:12 GMT
etag: 0x8DCE8C26CBEA77D
content-length: 1934
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: NwHEJrwNKfNaWOfUurgsUQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 44d1d951-101e-002c-01de-1a68ad000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1730789205.321550f1
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=212707
expires: Mon, 23 Dec 2024 09:52:00 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49734
timing-allow-origin: *
GET

https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:47 GMT
etag: 0x8DCE8C2C92E361F
content-length: 1979
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oCgEakDIKvDIYdA4zfrHhQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 2670e517-b01e-006e-0df3-3243b9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b6901002.1731335752.14eb9c7
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=177488
expires: Mon, 23 Dec 2024 00:05:01 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49735
timing-allow-origin: *
GET

https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:54 GMT
etag: 0x8DCDC5CFE789590
content-length: 1462
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: YsxphTS643oFtIWrwjg5mA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1d9838cf-b01e-002a-6ae9-149fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=30847
expires: Sat, 21 Dec 2024 07:21:00 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49736
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:14:44 GMT
etag: 0x8DCDC602EF80ACF
content-length: 92
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 6CIgOkytlGCbuuRvU1ESHg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 12652374-701e-0078-01eb-148227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b3777b5c.1727904385.ccaa679
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=208527
expires: Mon, 23 Dec 2024 08:42:20 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49737
timing-allow-origin: *
GET

https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 19 Nov 2024 04:13:15 GMT
etag: 0x8DD08507D665276
content-length: 955
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: Kk0u9e/SalHwM0LSYxaS+g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: a67788bb-101e-0063-1eab-3aacb5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.521a1202.1732053803.7ae27a55
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=77136
expires: Sat, 21 Dec 2024 20:12:29 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49738
timing-allow-origin: *
GET

https://r.bing.com/rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:27:10 GMT
etag: 0x8DCE8C247F92C3E
content-length: 2859
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hOJRe/y21ezUnMJkb3Rnrw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b5930caa-e01e-0054-0cde-1a001a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.c1777b5c.1731626910.39b8f3c
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=86739
expires: Sat, 21 Dec 2024 22:52:32 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49739
timing-allow-origin: *
GET

https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:34:24 GMT
etag: 0x8DCE8C34A2EADC0
content-length: 2391
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: UYaER6ThZGEud/Muajg45w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 02bb88ce-801e-006d-6dde-1a40be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=291962
expires: Tue, 24 Dec 2024 07:52:55 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973a
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/YALqEqJYnL-gaTc_XU1h3jHCQgc.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/YALqEqJYnL-gaTc_XU1h3jHCQgc.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 10 Dec 2024 09:51:22 GMT
etag: 0x8DD1900343E7BFE
content-length: 11629
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: vWEA5SJVYZzqDBnXjnUTIw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: af7bb5c3-801e-0022-4430-4b84a6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.90777b5c.1733869364.73687cd
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=105853
expires: Sun, 22 Dec 2024 04:11:06 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973b
timing-allow-origin: *
GET

https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:30:57 GMT
etag: 0x8DCE8C2CF400D7F
content-type: text/javascript; charset=utf-8
content-md5: DTDL0ta8Z4w5qdHa9ZUG/Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b7db009a-d01e-005c-08fe-1a1b69000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 2636
vary: Accept-Encoding
cache-control: public, no-transform, max-age=46001
expires: Sat, 21 Dec 2024 11:33:34 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 05:51:03 GMT
etag: 0x8DCDC5CDFF72AD3
content-length: 512
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: V1kiVXzIRqmzPm5TrNimoA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2d94308-501e-006f-4b98-164244000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=129717
expires: Sun, 22 Dec 2024 10:48:50 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:00:56 GMT
etag: 0x8DCDC5E41B5114A
akamai-grn: 0.3d367a5c.1734111191.a2e801d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 259
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: jDpfrkHEWPKiRt+7YgCBFw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f2c08729-201e-002f-4333-186baa000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=70190
expires: Sat, 21 Dec 2024 18:16:43 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973e
timing-allow-origin: *
GET

https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:37:29 GMT
etag: 0x8DCEC87A3ED1870
content-length: 1320
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: F/FfhRxYlnuZTsg2+6i7VA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 4286f8ac-f01e-000f-2cda-210766000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=123354
expires: Sun, 22 Dec 2024 09:02:47 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4973f
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:11:33 GMT
etag: 0x8DCDC681EDAC2C8
content-length: 245
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: ItmcJflzfwBqUrBIYlGXpQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 261a5bac-401e-0034-7fb8-1b4538000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=80225
expires: Sat, 21 Dec 2024 21:03:58 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49740
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:21 GMT
etag: 0x8DCE8C3014FD967
content-length: 4656
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 04jjFZu5YZ+50YtQ9rT+Jw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f50e5572-b01e-004c-5be7-312d8f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731630724.1b1a6367
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=342872
expires: Tue, 24 Dec 2024 22:01:25 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49741
timing-allow-origin: *
GET

https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 09 Dec 2024 12:46:23 GMT
etag: 0x8DD184F7CB91EEC
content-length: 489
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: L9Hi8L0edLojA1c18kZUVA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: efd1a7bc-f01e-004b-5abe-4adb0a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.591a1202.1733821284.96c2dc1d
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=222451
expires: Mon, 23 Dec 2024 12:34:24 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49742
timing-allow-origin: *
GET

https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 22 Nov 2024 10:55:37 GMT
etag: 0x8DD0AE432F16745
content-length: 2290
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 0OgEsUc5afhLPnQZRYj75Q==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 980edd47-f01e-0004-5908-3d1f12000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.d78f655f.1732309894.b56e24a
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=355046
expires: Wed, 25 Dec 2024 01:24:19 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49744
timing-allow-origin: *
GET

https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:32:07 GMT
etag: 0x8DCDC629CF7A282
content-length: 172
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: TLwZhqYro/p02/6N++ZW5g==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c41191e3-201e-0006-43ea-181de8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=115664
expires: Sun, 22 Dec 2024 06:54:37 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49745
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 04 Nov 2024 04:21:32 GMT
etag: 0x8DCFC8829FC5441
content-type: text/javascript; charset=utf-8
content-md5: Db92/67CtFF0jljsKqPMeQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 970268eb-501e-0002-421c-2fe86a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 482
cache-control: public, no-transform, max-age=252526
expires: Mon, 23 Dec 2024 20:55:39 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49746
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:24:00 GMT
etag: 0x8DCDC617A7BA9F4
content-length: 792
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: 3LAdJkykvHw5zfSSu6AY7w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b3b09a98-601e-0001-234c-19eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=108330
expires: Sun, 22 Dec 2024 04:52:23 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49749
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:32:28 GMT
etag: 0x8DCE8C305642E82
content-length: 1453
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: o0P31pAM8ZjqucLAMWUkZQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 87018ea0-e01e-005f-5e2d-23186e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.8c901002.1731409690.2df1fa59
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=41608
expires: Sat, 21 Dec 2024 10:20:21 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974a
timing-allow-origin: *
GET

https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:01 GMT
etag: 0x8DCE8C3193D5444
content-length: 9007
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: K6mYdssyGKO2Fe2fyESYTg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: c2a1a5f9-c01e-0007-4fde-1a1c15000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1728548709.3c91120b
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=266466
expires: Tue, 24 Dec 2024 00:47:59 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974b
timing-allow-origin: *
GET

https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:39:44 GMT
etag: 0x8DCDC63AD1835BA
content-length: 292
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: VajXBkM/3bTyIROS16fUYg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3d102e40-501e-004d-3692-182c72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=129276
expires: Sun, 22 Dec 2024 10:41:29 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974c
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:33 GMT
etag: 0x8DD04929EE8EC69
content-type: text/javascript; charset=utf-8
content-md5: IYJzFG4gYZ14vnQdqTao+A==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f577b370-d01e-0018-6efe-36c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 1268
cache-control: public, no-transform, max-age=166313
expires: Sun, 22 Dec 2024 20:58:46 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974d
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:39:05 GMT
etag: 0x8DCEC87DD067940
akamai-grn: 0.3a367a5c.1734346335.d86a23f
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 658
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: hmcBay1BgAVA4sBe4FzXJg==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0f1608e3-701e-0078-7e5d-318227000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=48709
expires: Sat, 21 Dec 2024 12:18:42 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974e
timing-allow-origin: *
GET

https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 06:44:16 GMT
etag: 0x8DCDC644F5E5FC5
akamai-grn: 0.d78f655f.1734116692.6b4a4b1
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1076
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: oqLg+91b3FmpcS7e8iKMsQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5ae0b016-001e-0011-7a69-16dd8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=209701
expires: Mon, 23 Dec 2024 09:01:54 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b4974f
timing-allow-origin: *
GET

https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Mon, 14 Oct 2024 19:24:23 GMT
etag: 0x8DCEC85CF372642
akamai-grn: 0.41367a5c.1734567131.ae45cb7
content-length: 1043
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PkxdhPHrMXZXxfqaK/YI3w==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6a67d116-b01e-0047-6073-1e35fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=264204
expires: Tue, 24 Dec 2024 00:10:17 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49754
timing-allow-origin: *
GET

https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 474
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: p/3mO7vALd9wD5esEzLGZw==
last-modified: Fri, 13 Dec 2024 07:56:08 GMT
etag: 0x8DD1B4B9A365000
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: f8018f31-b01e-002a-1085-4d9fd5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=375438
expires: Wed, 25 Dec 2024 07:04:11 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49753
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://www.bing.com
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 10 Oct 2024 00:33:23 GMT
etag: 0x8DCE8C3263B07E9
content-type: text/javascript; charset=utf-8
content-md5: 80z3xDtWBrHD/WXVZ9HXMQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 1cee5333-201e-0060-39fe-1aafb2000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
content-encoding: gzip
content-length: 887
cache-control: public, no-transform, max-age=61371
expires: Sat, 21 Dec 2024 15:49:44 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b49748
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Wed, 09 Oct 2024 06:47:11 GMT
etag: 0x8DCE82E33DB4289
content-length: 263
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: kSd0hTdqYlIKxD09mZrqMA==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 19451da4-501e-0046-6040-1a3406000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=79207
expires: Sat, 21 Dec 2024 20:47:00 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b498cd
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Tue, 24 Sep 2024 07:09:09 GMT
etag: 0x8DCDC67C959D1C6
content-length: 230
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: e8o72fCkQwkU95GMyH4alQ==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 6d410038-901e-0050-24ab-17f598000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=171908
expires: Sun, 22 Dec 2024 22:32:01 GMT
date: Fri, 20 Dec 2024 22:46:53 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734813.3b498d2
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Thu, 14 Nov 2024 09:56:27 GMT
etag: 0x8DD04929B4990FB
content-length: 3910
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: PtU28jG6dGjHkVaL3KCYNw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d0661e89-601e-0001-5ebb-36eb6d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.4c1a1202.1731633549.1b47e7a9
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=125615
expires: Sun, 22 Dec 2024 09:40:29 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734814.3b4997d
timing-allow-origin: *
GET

https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

last-modified: Fri, 06 Dec 2024 06:22:02 GMT
etag: 0x8DD15BE4C6397FE
content-length: 26625
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: XepiajoIzA8mdkJ+Qn60Zw==
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3e7e202c-d01e-0018-5612-48c705000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cache-control: public, no-transform, max-age=143133
expires: Sun, 22 Dec 2024 14:32:27 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734814.3b49ae9
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
GET

https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

msedge.exe

Remote address:

88.221.135.27:443

Request

GET /rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js HTTP/2.0
host: r.bing.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
origin: https://www.bing.com
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
dnt: 1
accept: */*
sec-fetch-site: same-site
sec-fetch-mode: cors
sec-fetch-dest: script
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

content-length: 13175
content-type: text/javascript; charset=utf-8
content-encoding: br
content-md5: P40kHkuCONKLasanvjGRrw==
last-modified: Thu, 19 Dec 2024 07:35:51 GMT
etag: 0x8DD1FFFC369A694
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: db369e47-001e-0033-7847-52b3bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
akamai-grn: 0.b9777b5c.1734647892.11159358
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingaotak"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
cache-control: public, no-transform, max-age=331694
expires: Tue, 24 Dec 2024 18:55:08 GMT
date: Fri, 20 Dec 2024 22:46:54 GMT
alt-svc: h3=":443"; ma=93600
akamai-grn: 0.c58f655f.1734734814.3b49aeb
timing-allow-origin: *
DNS

201.143.101.95.in-addr.arpa

Remote address:

8.8.8.8:53

Request

201.143.101.95.in-addr.arpa

IN PTR

Response

201.143.101.95.in-addr.arpa

IN PTR

a95-101-143-201deploystaticakamaitechnologiescom
DNS

27.135.221.88.in-addr.arpa

Remote address:

8.8.8.8:53

Request

27.135.221.88.in-addr.arpa

IN PTR

Response

27.135.221.88.in-addr.arpa

IN PTR

a88-221-135-27deploystaticakamaitechnologiescom
DNS

login.microsoftonline.com

msedge.exe

Remote address:

8.8.8.8:53

Request

login.microsoftonline.com

IN A

Response

login.microsoftonline.com

IN CNAME

login.mso.msidentity.com

login.mso.msidentity.com

IN CNAME

ak.privatelink.msidentity.com

ak.privatelink.msidentity.com

IN CNAME

www.tm.ak.prd.aadg.akadns.net

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.4

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.68

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.71

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.31.71

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.73

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.2

www.tm.ak.prd.aadg.akadns.net

IN A

20.190.159.0

www.tm.ak.prd.aadg.akadns.net

IN A

40.126.31.67
GET

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=3b247a9f-8530-4140-ab81-08149aa6b72d&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22E7D37800137E49298A37BC00E0ACD1F9%22%7d

msedge.exe

Remote address:

20.190.159.4:443

Request

GET /common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=3b247a9f-8530-4140-ab81-08149aa6b72d&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22E7D37800137E49298A37BC00E0ACD1F9%22%7d HTTP/2.0
host: login.microsoftonline.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
sec-ch-ua-mobile: ?0
upgrade-insecure-requests: 1
dnt: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: cross-site
sec-fetch-mode: navigate
sec-fetch-dest: iframe
referer: https://www.bing.com/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
p3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
x-ms-request-id: 5b984981-5ee3-475c-89fe-9b46461ef301
x-ms-ests-server: 2.1.19683.3 - WEULR1 ProdSlices
report-to: {"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+dub2"}]}
nel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
x-ms-srs: 1.P
referrer-policy: strict-origin-when-cross-origin
content-security-policy-report-only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-Wx-YOPw7kbJecf_4oOmE-A' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; img-src 'self' data: https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
x-xss-protection: 0
set-cookie: buid=1.AQoAMe_N-B6jSkuT5F9XHpElWnmtoZ62_ZpPi8MrcPluNMcBAAAKAA.AQABGgEAAADW6jl31mB3T7ugrWTT8pFecFS4YRnI_-txjZO16WGpyecvuUV_Hd3lhz93mzXrgbG2EhweVaLGRjT37aDdqiiUL9sB7iDDiZrMbIPH7PZqWpjor10ie2ACqF_-XeJBKh4gAA; expires=Sun, 19-Jan-2025 22:46:54 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: fpc=ApaI7b3AiilNg650Yhluu0KCeMQLAQAAAN3q994OAAAA; expires=Sun, 19-Jan-2025 22:46:54 GMT; path=/; secure; HttpOnly; SameSite=None
set-cookie: esctx=PAQABBwEAAADW6jl31mB3T7ugrWTT8pFeRjsk8zY381OoBNUFfbC12KmPO5wpNiqAW-XSrmpmBkJJNfvyuManiGhjEu7UNsYA_1fUZliLCl5kUYFhBuZtw9GcR61Z4vyISa6vA1nLZvm0x1sGGzOqktR08zuM4y4TU5cwM34OWIv3tpsZau__15mJafGqLnPHB8xhum897I0gAA; domain=.login.microsoftonline.com; path=/; secure; HttpOnly; SameSite=None
set-cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponly
set-cookie: stsservicecookie=estsfd; path=/; secure; samesite=none; httponly
date: Fri, 20 Dec 2024 22:46:53 GMT
content-length: 702
DNS

4.159.190.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

4.159.190.20.in-addr.arpa

IN PTR

Response
DNS

138.32.126.40.in-addr.arpa

Remote address:

8.8.8.8:53

Request

138.32.126.40.in-addr.arpa

IN PTR

Response
DNS

237.197.79.204.in-addr.arpa

Remote address:

8.8.8.8:53

Request

237.197.79.204.in-addr.arpa

IN PTR

Response
DNS

172.210.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.210.232.199.in-addr.arpa

IN PTR

Response
DNS

raw.githubusercontent.com

msedge.exe

Remote address:

8.8.8.8:53

Request

raw.githubusercontent.com

IN A

Response

raw.githubusercontent.com

IN A

185.199.108.133

raw.githubusercontent.com

IN A

185.199.110.133

raw.githubusercontent.com

IN A

185.199.111.133

raw.githubusercontent.com

IN A

185.199.109.133
GET

https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe

msedge.exe

Remote address:

185.199.108.133:443

Request

GET /Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe HTTP/2.0
host: raw.githubusercontent.com
sec-ch-ua: "Chromium";v="92", " Not A;Brand";v="99", "Microsoft Edge";v="92"
dnt: 1
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.131 Safari/537.36 Edg/92.0.902.67
accept: */*
origin: https://github.com
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

Response

HTTP/2.0 200

cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"4ba6387aded3257b082595e3a55ce5c6371897dfcda7111245c7daf072438189"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: F3F2:2F0689:64219:821BC:6765F3F6
accept-ranges: bytes
date: Fri, 20 Dec 2024 22:47:19 GMT
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600040-LCY
x-cache: MISS
x-cache-hits: 0
x-timer: S1734734840.600447,VS0,VE152
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: a362af7cae700b3612cf4a90bf5c82577bf93e2b
expires: Fri, 20 Dec 2024 22:52:19 GMT
source-age: 0
content-length: 346112
DNS

73.144.22.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

73.144.22.2.in-addr.arpa

IN PTR

Response

73.144.22.2.in-addr.arpa

IN PTR

a2-22-144-73deploystaticakamaitechnologiescom
DNS

48.229.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

48.229.111.52.in-addr.arpa

IN PTR

Response
DNS

awtglbcfayxet.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

awtglbcfayxet.ru

IN A

Response
DNS

awtglbcfayxet.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

awtglbcfayxet.ru

IN A

Response
DNS

haavwidersifu.org

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

haavwidersifu.org

IN A

Response
DNS

umbhwdhxxtjtm.co.uk

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

umbhwdhxxtjtm.co.uk

IN A

Response
DNS

iuxgxyiqloass.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

iuxgxyiqloass.info

IN A

Response
DNS

iuxgxyiqloass.info

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

iuxgxyiqloass.info

IN A

Response
DNS

vhyrxtmkrpbht.com

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

vhyrxtmkrpbht.com

IN A

Response
DNS

tufsievudboxq.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tufsievudboxq.net

IN A

Response
DNS

tufsievudboxq.net

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

tufsievudboxq.net

IN A

Response
DNS

usgrsyctjhxeq.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

usgrsyctjhxeq.biz

IN A

Response
DNS

usgrsyctjhxeq.biz

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

usgrsyctjhxeq.biz

IN A

Response
DNS

upddjubhwwglh.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

upddjubhwwglh.ru

IN A

Response
DNS

upddjubhwwglh.ru

{34184A33-0407-212E-3320-09040709E2C2}.exe

Remote address:

8.8.8.8:53

Request

upddjubhwwglh.ru

IN A

Response
DNS

78.239.69.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.239.69.13.in-addr.arpa

IN PTR

Response
DNS

78.239.69.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

78.239.69.13.in-addr.arpa

IN PTR

Response

20.26.156.215:443

https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

tls, http2

msedge.exe

16.0kB
394.0kB
228
364

HTTP Request

GET https://github.com/AHXR/ghost

HTTP Response

200

HTTP Request

GET https://github.com/AHXR/ghost/security/overall-count

HTTP Request

GET https://github.com/AHXR/ghost/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/AHXR/ghost/used_by_list

HTTP Request

GET https://github.com/AHXR/ghost/latest-commit/master

HTTP Request

GET https://github.com/AHXR/ghost/refs?type=branch

HTTP Request

GET https://github.com/AHXR/ghost/tree-commit-info/master

HTTP Request

GET https://github.com/AHXR/ghost/overview-files/master

HTTP Request

GET https://github.com/AHXR/ghost/branch-and-tag-count

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/manifest.json

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/AHXR/ghost/releases/tag/1.0.4

HTTP Response

200

HTTP Request

GET https://github.com/AHXR/ghost/releases/expanded_assets/1.0.4

HTTP Response

200

HTTP Request

GET https://github.com/AHXR/ghost/releases/tag/1.0.4

HTTP Response

200

HTTP Request

GET https://github.com/search?q=virus%20download&type=repositories

HTTP Response

429

HTTP Request

GET https://github.com/search?q=virus%20download&type=repositories

HTTP Response

429

HTTP Request

GET https://github.com/favicon.ico

HTTP Response

200

HTTP Request

GET https://github.com/search?q=virus%20download&type=repositories

HTTP Response

429

HTTP Request

GET https://github.com/favicon.ico

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/security/overall-count

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/hovercards/citation/sidebar_partial?tree_name=master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/used_by_list

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/contributors_list?count=2&current_repository=The-MALWARE-Repo&items_to_show=2

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/refs?type=branch

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/branch-and-tag-count

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree/master/Ransomware

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/tree-commit-info/master/Ransomware

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/blob/master/Ransomware/CryptoLocker.exe

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/latest-commit/master/Ransomware/CryptoLocker.exe

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/deferred-metadata/master/Ransomware/CryptoLocker.exe

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

HTTP Response

302

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

HTTP Response

302

HTTP Request

GET https://github.com/Da2dalus/The-MALWARE-Repo/raw/refs/heads/master/Ransomware/CryptoLocker.exe

HTTP Response

302
185.199.110.133:443

https://avatars.githubusercontent.com/u/123590232?v=4&size=40

tls, http2

msedge.exe

2.8kB
15.5kB
26
33

HTTP Request

GET https://avatars.githubusercontent.com/u/27564220?v=4&size=40

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/27564220?s=40&v=4

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?s=64&v=4

HTTP Request

GET https://avatars.githubusercontent.com/u/123590232?s=64&v=4

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/63458929?v=4&size=40

HTTP Response

200

HTTP Request

GET https://avatars.githubusercontent.com/u/123590232?v=4&size=40

HTTP Response

200
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

https://github.githubassets.com/assets/react-code-view-46a8d3dce54e.js

tls, http2

msedge.exe

41.6kB
1.1MB
659
934

HTTP Request

GET https://github.githubassets.com/assets/light-0cfd1fd8509e.css

HTTP Request

GET https://github.githubassets.com/assets/dark-d782f59290e2.css

HTTP Request

GET https://github.githubassets.com/assets/primer-primitives-953961b66e63.css

HTTP Request

GET https://github.githubassets.com/assets/primer-4430d3c2c150.css

HTTP Request

GET https://github.githubassets.com/assets/github-e72829f5538b.css

HTTP Request

GET https://github.githubassets.com/assets/global-47b8b2ca21ae.css

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu.1bcff9205c241e99cff2.module.css

HTTP Request

GET https://github.githubassets.com/assets/primer-react.797c8ec006b327590422.module.css

HTTP Request

GET https://github.githubassets.com/assets/code-9e1913b328be.css

HTTP Request

GET https://github.githubassets.com/assets/repository-d031bcc14e1b.css

HTTP Request

GET https://github.githubassets.com/assets/repos-overview.9cc263aa0716ce801059.module.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/wp-runtime-64d23f636568.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover_js-9da652f58479.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_arianotify-polyfill_ariaNotify-polyfill_js-node_modules_github_mi-3abb8f-d7e6bc799724.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_failbot_failbot_ts-c551691a8183.js

HTTP Request

GET https://github.githubassets.com/assets/environment-7b93e0f0c8ff.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_primer_behaviors_dist_esm_index_mjs-ea2a5d75d580.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_selector-observer_dist_index_esm_js-f690fd9ae3d5.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_relative-time-element_dist_index_js-f6da4b3fa34c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_auto-complete-element_dist_index_js-node_modules_github_catalyst_-8e9f78-a74b4e0a8a6b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_text-expander-element_dist_index_js-78748950cb0c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-b5f1d7-a1760ffda83d.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_markdown-toolbar-element_dist_index_js-ceef33f593fa.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_primer_view-co-c44a69-c6d035fa8dc8.js

HTTP Request

GET https://github.githubassets.com/assets/github-elements-f991cfab5105.js

HTTP Request

GET https://github.githubassets.com/assets/element-registry-d283cbab281e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_braintree_browser-detection_dist_browser-detection_js-node_modules_githu-bb80ec-7f43298e364b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lit-html_lit-html_js-be8cb88f481b.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_morphdom_dist_morphdom-e-7c534c-a4a1922eb55f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_turbo_dist_turbo_es2017-esm_js-e3cbe28f1638.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-893f9f-6cf3320416b8.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_color-convert_index_js-e3180fe3bcb3.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_quote-selection_dist_index_js-node_modules_github_session-resume_-69cfcc-833249ee3034.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_updatable-content_updatable-content_ts-863ef5872a03.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_task-list_ts-app_assets_modules_github_sso_ts-ui_packages-900dde-917d4bda1f1a.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_sticky-scroll-into-view_ts-7cbef09a422c.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_ajax-error_ts-app_assets_modules_github_behaviors_include-d0d0a6-b41aeef03499.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-fb43816ab83c.js

HTTP Request

GET https://github.githubassets.com/assets/behaviors-a6abce982f3f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-f6223d90c7ba.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-global-cfcd9f4f0f23.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-96453a51f920.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-70450e-eecf0d50276f.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_ref-selector_ts-842c74d2eab4.js

HTTP Request

GET https://github.githubassets.com/assets/codespaces-a493a4b9528f.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-3eebbd-0763620ad7bf.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_decorators_js-node_modules_delegated-events_di-e161aa-9d41fb1b6c9e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_remote--3c9c82-7238cfcdaa51.js

HTTP Request

GET https://github.githubassets.com/assets/repositories-f3093651fb0e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_catalyst_lib_inde-dbbea9-26cce2010167.js

HTTP Request

GET https://github.githubassets.com/assets/code-menu-b5f092ec4b30.js

HTTP Request

GET https://github.githubassets.com/assets/primer-react-753dc87b1e29.js

HTTP Request

GET https://github.githubassets.com/assets/react-core-accb67f1350f.js

HTTP Request

GET https://github.githubassets.com/assets/react-lib-2131e17288a8.js

HTTP Request

GET https://github.githubassets.com/assets/octicons-react-45c3a19dd792.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryClient_js-e6f07a7e80b7.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_emotion_is-prop-valid_dist_emotion-is-prop-valid_esm_js-node_modules_emo-37e3d5-92730c05e718.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_stacktrace-parser_dist_s-e7dcdd-f7cc96ebae76.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_oddbird_popover-polyfill_dist_popover-fn_js-55fea94174bf.js

HTTP Request

GET https://github.githubassets.com/assets/notifications-subscriptions-menu-51601778bd8d.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ui-commands_ui-commands_ts-df3b47d86af0.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/keyboard-shortcuts-dialog-958cae8ecd6c.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-73b675cf164a.js

HTTP Request

GET https://github.githubassets.com/assets/sessions-5d6426bbf16a.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_dompurify_dist_purify_js-b89b98661809.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_tanstack_query-core_build_modern_queryObserver_js-node_modules_tanstack_-defd52-843b41414e0e.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_hydro-analytics-client_dist_analytics-client_js-node_modules_gith-9002b0-881da98a8b00.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_aria-live_aria-live_ts-ui_packages_promise-with-resolvers-polyfill_promise-with-r-014121-a7926fdcecf7.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_paths_index_ts-4e4d706da555.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_ref-selector_RefSelector_tsx-9445f4afb2bc.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_hooks_use-canonical-object_ts-ui_packages_code-view-shared_hooks-503c34-7dfba50d2c16.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_commit-attribution_index_ts-ui_packages_commit-checks-status_index_ts-ui_packages-56ee79-b20e64ad06f9.js

HTTP Request

GET https://github.githubassets.com/assets/repos-overview-e21499fb8264.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_select-panel-element_ts-4becf93aa968.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_primer_experimental_toggle-switch-element_ts-04349cb42240.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_custom-scopes-element_ts-e27cda452715.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-b7767a-9ad7d4eda3d9.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_query-builder-element_query-builder-element_ts-405952f48873.js

HTTP Request

GET https://github.githubassets.com/assets/app_assets_modules_github_blob-anchor_ts-ui_packages_code-nav_code-nav_ts-ui_packages_filter--8253c1-f38cdfca9137.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_jump-to-element_model_ts-201ddaee8e7d.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_qbsearch-input-element_ts-343b1f8e02e1.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_cookie-consent-link-element_element-entry_ts-0ade2bf7a852.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_ghcc-consent-element_element-entry_ts-28a44339e296.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_combobox-nav_dist-5f477b-eeb221e8a5a3.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_hydro-analytics_hydro-analytics_ts-ui_packages_query-builder-element_element-entry_ts-bb301b3aed11.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_webauthn-get-element_element-entry_ts-0937e3810b98.js

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/chunk-ui_packages_code-view-shared_components_files-search_FileResultsList_tsx-9889e76b905e.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-vendors-node_modules_consent-banner_dist_consent-banner_js-362ca569b596.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/releases-d27bae89dc62.css

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_github_blackbird-parser_dist_blackbird_js-df077101f752.js

HTTP Request

GET https://github.githubassets.com/assets/chunk-app_components_search_parsing_parsing_ts-0dbb4d051f34.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/assets/react-code-view.6b587a69b593e23c3657.module.css

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lodash-es__Stack_js-node_modules_lodash-es__Uint8Array_js-node_modules_l-4faaa6-10d8eea337ce.js

HTTP Request

GET https://github.githubassets.com/assets/vendors-node_modules_lodash-es__baseIsEqual_js-8929eb9718d5.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_code-view-shared_utilities_web-worker_ts-ui_packages_code-view-shared_worker-jobs-cdcae1-f0dc8f3ae3e0.js

HTTP Request

GET https://github.githubassets.com/assets/ui_packages_document-metadata_document-metadata_ts-ui_packages_repos-file-tree-view_repos-fil-5db355-d0627efd6544.js

HTTP Request

GET https://github.githubassets.com/assets/react-code-view-46a8d3dce54e.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

989 B
6.3kB
9
11
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

1.1kB
6.3kB
12
10
185.199.110.154:443

github.githubassets.com

tls

msedge.exe

1.1kB
6.3kB
12
10
185.199.108.133:443

https://camo.githubusercontent.com/91e3133c2389f68bf3ff728124909494bb62db32535049bd90ef7b213e91f95b/68747470733a2f2f692e696d6775722e636f6d2f573561433672672e706e67

tls, http2

msedge.exe

2.3kB
26.3kB
22
32

HTTP Request

GET https://camo.githubusercontent.com/1c2c6a4a3a5b705ec29a504f5c9757695e8c010b73d9625f393077b4737228ec/68747470733a2f2f692e696d6775722e636f6d2f4e4443585867442e6a7067

HTTP Request

GET https://camo.githubusercontent.com/91e3133c2389f68bf3ff728124909494bb62db32535049bd90ef7b213e91f95b/68747470733a2f2f692e696d6775722e636f6d2f573561433672672e706e67

HTTP Response

200

HTTP Response

200
185.199.108.133:443

camo.githubusercontent.com

tls

msedge.exe

989 B
4.8kB
9
10
185.199.110.154:443

https://github.githubassets.com/favicons/favicon.png

tls, http2

msedge.exe

2.5kB
24.6kB
27
30

HTTP Request

GET https://github.githubassets.com/favicons/favicon.svg

HTTP Request

GET https://github.githubassets.com/assets/apple-touch-icon-144x144-b882e354c005.png

HTTP Response

200

HTTP Request

GET https://github.githubassets.com/favicons/favicon.png

HTTP Response

200

HTTP Response

200
140.82.114.21:443

https://collector.github.com/github/collect

tls, http2

msedge.exe

28.6kB
16.7kB
73
71

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204

HTTP Response

204

HTTP Request

POST https://collector.github.com/github/collect

HTTP Response

204
140.82.114.21:443

collector.github.com

tls

msedge.exe

885 B
4.3kB
8
5
20.26.156.210:443

https://api.github.com/_private/browser/stats

tls, http2

msedge.exe

8.9kB
11.7kB
38
44

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200

HTTP Request

POST https://api.github.com/_private/browser/stats

HTTP Response

200
34.54.88.138:443

https://www.virustotal.com/gui/

tls, http2

msedge.exe

2.1kB
9.7kB
18
22

HTTP Request

GET https://www.virustotal.com/

HTTP Request

GET https://www.virustotal.com/gui/
34.54.88.138:443

www.virustotal.com

tls, http2

msedge.exe

989 B
5.5kB
9
9
142.250.179.67:443

https://www.recaptcha.net/recaptcha/enterprise.js

tls, http2

msedge.exe

2.3kB
16.5kB
23
29

HTTP Request

GET https://www.recaptcha.net/recaptcha/enterprise.js

HTTP Request

GET https://www.recaptcha.net/recaptcha/enterprise.js
216.239.34.36:443

https://region1.google-analytics.com/g/collect?v=2&tid=G-BLNDV9X2JR&gtm=45je4cc1v9119290270z89133079464za200zb9133079464&_p=1734734782422&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1786778694.1734734783&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1734734782&sct=1&seg=0&dl=https%3A%2F%2Fwww.virustotal.com%2Fgui%2Ffile%2F56695df422a0f0a901484ff6e3a3067e9f1e96096077ba901070bbd2b15503ea%2Fdetection&dr=https%3A%2F%2Fwww.virustotal.com%2F&dt=VirusTotal&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=587

tls, http2

msedge.exe

2.2kB
7.0kB
15
13

HTTP Request

POST https://region1.google-analytics.com/g/collect?v=2&tid=G-BLNDV9X2JR&gtm=45je4cc1v9119290270z89133079464za200zb9133079464&_p=1734734782422&gcd=13l3l3l3l1l1&npa=0&dma=0&tag_exp=101925629~102067555~102067808~102081485~102198178&cid=1786778694.1734734783&ul=en-us&sr=1280x720&uaa=x86&uamb=0&uam=&uap=Windows&uapv=10.0&uaw=0&frm=0&pscdl=noapi&_s=1&sid=1734734782&sct=1&seg=0&dl=https%3A%2F%2Fwww.virustotal.com%2Fgui%2Ffile%2F56695df422a0f0a901484ff6e3a3067e9f1e96096077ba901070bbd2b15503ea%2Fdetection&dr=https%3A%2F%2Fwww.virustotal.com%2F&dt=VirusTotal&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=587
172.217.18.195:443

https://recaptcha.net/recaptcha/api.js?render=explicit

tls, http2

msedge.exe

2.0kB
15.1kB
20
22

HTTP Request

GET https://recaptcha.net/recaptcha/api.js?render=explicit
172.217.20.164:443

www.google.com

tls

msedge.exe

1.2kB
627 B
7
6
172.217.20.164:443

https://www.google.com/js/bg/Xe7AbhhPfZcEikoNmhghBXAEhOusDIBKWKS_roS4Q7E.js

tls, http2

msedge.exe

2.2kB
14.6kB
22
21

HTTP Request

GET https://www.google.com/js/bg/Xe7AbhhPfZcEikoNmhghBXAEhOusDIBKWKS_roS4Q7E.js
88.221.135.34:443

https://www.bing.com/ipv6test/test?FORM=MONITR

tls, http2

msedge.exe

60.6kB
431.5kB
352
452

HTTP Request

GET https://www.bing.com/qbox?query=&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&oit=0

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=v&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=b122b4cd4c694ad69c55d47af7417d1b&oit=1&cp=1&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=vi&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=35f3405e7e3449e0b3e1f36c062821f3&oit=1&cp=2&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=vir&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=f8d2a17d5ae146cbbb69d83ca75ff2c6&oit=1&cp=3&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=viru&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=602a9d4b746b418db4c6c86ecf9f6362&oit=1&cp=4&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=e185c55aa0fb4b3c96488329f142f35d&oit=1&cp=5&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=05a0949524b94127872c7706fff536c0&oit=1&cp=6&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+d&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=1e6e640289ae476e89525a4b7742186e&oit=4&cp=7&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+do&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=36a1b0a2f3f14db6bae105b33fccadff&oit=4&cp=8&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+dow&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=4b3c5b7c4e314dc4a1c9b33a94f26b1b&oit=4&cp=9&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+down&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=d30e2ef590e84efe9debc1702795c4dc&oit=4&cp=10&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+downl&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=df14cee750eb411989187784e58fcc30&oit=4&cp=11&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+downlo&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=32f09ee6fe804a74b3fdfcf0d08ebdd7&oit=4&cp=12&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+downloa&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=7151f521d5a54445b692ceaac3d86c3b&oit=4&cp=13&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/qbox?query=virus+download&language=en-US&pt=EdgBox&cvid=7feed066f6dc4f7c882b769d360c77fc&ig=6a49a2021cb149a9aa5ca923535d596e&oit=4&cp=14&pgcl=4

HTTP Response

200

HTTP Request

GET https://www.bing.com/search?q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Regular.woff2

HTTP Request

GET https://www.bing.com/sa/simg/Roboto_Semibold.woff2

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rp/B6jGHby7hXuEC7enS8xiNSUwqXw.png

HTTP Response

200

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx?

HTTP Request

GET https://www.bing.com/sa/simg/favicon-trans-bg-blue-mg.ico

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.CPT&DATA={%22pp%22:{%22S%22:%22L%22,%22FC%22:7,%22BC%22:297,%22SE%22:-1,%22TC%22:-1,%22H%22:378,%22BP%22:388,%22CT%22:392,%22IL%22:6},%22ad%22:[-1,-1,1263,609,1263,4287,0],%22net%22:%22undefined%22}&P=SERP&DA=DUBE01

HTTP Request

GET https://www.bing.com/rp/5A_wVM0BDlqDmkBnZeuIpN6wkcA.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/rewardsapp/widgetassets/prod/medallion/1.1.2/js/widget.js?t=241220

HTTP Request

GET https://www.bing.com/rp/em88jYr3ZOv7yX3AqoOU5z8EEnA.png

HTTP Response

204

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22Base%22%2C%22FID%22%3A%22CI%22%7D%2C%7B%22Rtt%22%3A%22100%22%2C%22Downlink%22%3A%2210%22%2C%22T%22%3A%22CI.NetworkPerformance%22%2C%22TS%22%3A1734734812146%2C%22Name%22%3A%22timinginfo%22%2C%22FID%22%3A%22NetworkPerformanceDetails%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812165%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22EdgeSpoofing%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DM%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812167%2C%22Name%22%3A%220%22%2C%22FID%22%3A%22DARKMODE%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812168%2C%22Name%22%3A%224g%22%2C%22FID%22%3A%22NTWKTYP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22ClientDimNotSent%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22Info%22,%22FID%22:%22CI%22,%22Name%22:%22HasRR%22,%22Text%22:%221%22}]

HTTP Request

GET https://r.bing.com/rp/NbA_o5_JH0GEi8eQ-UOtARHo4pE.svg

HTTP Request

GET https://r.bing.com/rp/Dl3Mgy5b8mZk0rO25YbvLM3bp7Q.svg

HTTP Request

GET https://r.bing.com/rp/0CgkJZjO41TzOLUmWVOwf2CV3Y8.svg

HTTP Request

GET https://r.bing.com/rp/PJnYbCIkGpZKNrse7LdUBRu2AVQ.svg

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22CharCount%22,%22Text%22:%2214%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.SERPSB%22,%22FID%22:%22CI%22,%22Name%22:%22LandingRows%22,%22Text%22:%221%22}]

HTTP Request

GET https://www.bing.com/images/sbi?mmasync=1&ig=E7D37800137E49298A37BC00E0ACD1F9&iid=.5101&ptn=Web&ep=0&iconpl=1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22width%22%3A%221280%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812170%2C%22Name%22%3A%22M%22%2C%22FID%22%3A%22BRW%22%7D%2C%7B%22height%22%3A%22609%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812171%2C%22Name%22%3A%22S%22%2C%22FID%22%3A%22BRH%22%7D%2C%7B%22RawDPR%22%3A%221.0%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812177%2C%22Name%22%3A%221.0%22%2C%22FID%22%3A%22DPR%22%7D%2C%7B%22T%22%3A%22CI.SCArrST%22%2C%22TS%22%3A1734734812179%2C%22Name%22%3A455%2C%22FID%22%3A%22SCArrST%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812180%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812181%2C%22Name%22%3A%22VisibleOrDelayed%22%2C%22FID%22%3A%22BottomBanner%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22BottomBanner%22%2C%22FID%22%3A%22Mcp%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.notif.shown%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22InitializationStarted%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A%22bnp.embed.ready%22%2C%22FID%22%3A%2263731%22%7D%2C%7B%22ID%22%3A%2263731%22%2C%22T%22%3A%22CI.BNPUxAssetIndex%22%2C%22TS%22%3A1734734812182%2C%22Name%22%3A0%2C%22FID%22%3A%22BNP%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A1263%2C%22FID%22%3A%22ViewPortWidth%22%7D%2C%7B%22T%22%3A%22CI.BNP%22%2C%22TS%22%3A1734734812183%2C%22Name%22%3A%22OfferIdMissing%22%2C%22FID%22%3A%22BNPOfferId%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812361%2C%22Name%22%3A%22ButtonHidden%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ClientInst%22%2C%22TS%22%3A1734734812600%2C%22Name%22%3A%22OrgId%22%2C%22FID%22%3A%22NoSignInAttempt%22%7D%2C%7B%22Time%22%3A1069%2C%22time%22%3A1076%2C%22T%22%3A%22CI.Latency%22%2C%22TS%22%3A1734734812622%2C%22Name%22%3A%22Loaded%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22comp%22%3A%22loaded%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22micComponent%22%3A%22rendered%22%2C%22time%22%3A1077%2C%22T%22%3A%22CI.Data%22%2C%22TS%22%3A1734734812623%2C%22Name%22%3A%22speech%22%2C%22FID%22%3A%22HP%22%7D%5D

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/fdVZU4ttbw8NDRm6H3I5BW3_vCo.svg

HTTP Request

GET https://r.bing.com/rp/4L4QdyjTv0HYE2Ig2ol9eYoqxg8.svg

HTTP Request

GET https://r.bing.com/rp/Fsa_OI0AplCnVoXGca8ALOo0S0s.svg

HTTP Request

GET https://r.bing.com/rp/UYtUYDcn1oZlFG-YfBPz59zejYI.svg

HTTP Request

GET https://r.bing.com/rp/kiGH9ukZK6Q4hvtDtwwVc1yvueg.svg

HTTP Request

GET https://r.bing.com/rp/KC_nX2_tPPyFvVw1RK20Yu1FyDk.svg

HTTP Request

GET https://r.bing.com/rp/NnFHhz2jL6yzChtIhaB5IIVKY5k.svg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/hx-eea1zqtCz4K0bW2uH_oN7Fs4.jpg

HTTP Request

GET https://r.bing.com/rp/95z5wMy4UcfbSSSlSw780vQ5jKA.jpg

HTTP Request

GET https://r.bing.com/rp/GJDmKr3_TS3Qpm6KEL9UKUQKUO4.jpg

HTTP Request

GET https://r.bing.com/rp/ln5TQq6AIWfcBlduDk-5bnaJMpY.jpg

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/dbmNS45xQvD1diApY1T2HExvOo8.jpg

HTTP Request

GET https://r.bing.com/rp/cfeVf2-uV0hUo3ToTbLjztuomWk.jpg

HTTP Request

GET https://r.bing.com/rp/lvCKZ07bEYtoYmY62ifMzVa0RIE.jpg

HTTP Request

GET https://r.bing.com/rp/ni3MyKKVu9pK0SgY6gb6Z2NOGpg.jpg

HTTP Request

POST https://www.bing.com/rewardsapp/ncheader?ver=52251624&IID=SERP.5056&IG=E7D37800137E49298A37BC00E0ACD1F9

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/rewardsapp/reportActivity?IG=E7D37800137E49298A37BC00E0ACD1F9&IID=SERP.5066&q=virus+download&cvid=7feed066f6dc4f7c882b769d360c77fc&aqs=edge..69i57j0l4j69i61j69i60.4150j0j4&FORM=ANAB01&PC=U531

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/c4ruj6QGsmSnOG64gJJnnnYDa44.br.css

HTTP Request

GET https://r.bing.com/rp/5-y8FBmAkXLBZZghI-X94CRnsqg.br.css

HTTP Request

GET https://r.bing.com/rp/17Kbwo14aoBIPkSeISAgHKajyeA.br.css

HTTP Request

GET https://r.bing.com/rp/vDjLjnEkXEuH2C8u3tT0A004qwQ.br.css

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

POST https://www.bing.com/orgid/idtoken/conditional

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22fdbkans_0%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&Type=Event.ClientInst&DATA=[{%22T%22:%22CI.FeedbackInit%22,%22FID%22:%22CI%22,%22Name%22:%22Feedback%22,%22Text%22:%22sb_feedback%22}]

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22loadJsModule%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22correlationId%22%3A%226765f3dcd653484392f2650efd41f8dc%22%2C%22T%22%3A%22CI.acclink%22%2C%22TS%22%3A1734734812639%2C%22Name%22%3A%22undirectflow%22%2C%22FID%22%3A%22init%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812747%2C%22Name%22%3A%22Show%22%2C%22FID%22%3A%22%22%7D%2C%7B%22T%22%3A%22CI.OpalUpsell%22%2C%22TS%22%3A1734734812749%2C%22Name%22%3A%22ShowBubble%22%2C%22FID%22%3A%22%22%7D%2C%7B%22osBuildVersion%22%3A%5B%2210%22%2C%220%22%2C%2219041%22%5D%2C%22isWin11OrHigher%22%3A%22false%22%2C%22fullOsBuild%22%3A%2210.0.19041%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812778%2C%22Name%22%3A%22OSBuild%22%2C%22FID%22%3A%22OSBuild%22%7D%2C%7B%22Namespace%22%3A%22SearchHarder%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812827%2C%22Name%22%3A%22ButtonVisible%22%2C%22FID%22%3A%22SearchHarderEntryPoint%22%7D%2C%7B%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734812965%2C%22Name%22%3A%22idleTabTrackerInitialized%22%2C%22FID%22%3A%22RewardsIdleTabTracker%22%7D%2C%7B%22T%22%3A%22CI.Tab%22%2C%22TS%22%3A1734734812983%2C%22Name%22%3A%221%22%2C%22FID%22%3A%22count%22%7D%2C%7B%22SuppressingFeature%22%3A%22lgVidAns%22%2C%22T%22%3A%22CI.LeftGutterUtility%22%2C%22TS%22%3A1734734813029%2C%22Name%22%3A%22LGSuppressed%22%2C%22FID%22%3A%22lgVidAns%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22PromptDevLoc%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813117%2C%22Name%22%3A%22Perm_Available%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Text%22%3A%220%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22web%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%221%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22conv%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%222%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22video%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%223%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22images%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%224%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22local%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%225%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22news%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%226%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22shop%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%227%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22flights%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%228%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22travelhub%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%229%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22hotels%22%2C%22FID%22%3A%22DynScopeRank%22%7D%2C%7B%22Text%22%3A%2210%22%2C%22T%22%3A%22CI.Info%22%2C%22TS%22%3A1734734813132%2C%22Name%22%3A%22realestate%22%2C%22FID%22%3A%22DynScopeRank%22%7D%5D

HTTP Request

GET https://www.bing.com/geolocation/write?isBlocked=true&sid=0FDDFE0CB1E064AA035BEB57B09C65BF&clientsid=undefined

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22Fallback%22%3A%221%22%2C%22IsRewardUser%22%3A%22%22%2C%22IsAutoOpenFlyout%22%3A%22%22%2C%22SuppressionReason%22%3A%22NoTrigger%3AMuidTrialNotEnoughPoints%22%2C%22FID%22%3A%22ModernRewardsFlyout%22%2C%22EventName%22%3A%22AutoOpenFlyoutFired%22%2C%22T%22%3A%22CI.Init%22%2C%22TS%22%3A1734734813133%2C%22Name%22%3A%22AutoOpenFlyoutFired%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22Perm_Denied%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813136%2C%22Name%22%3A%22block%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813137%2C%22Name%22%3A%22tryBlock%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/fd/ls/l?IG=E7D37800137E49298A37BC00E0ACD1F9&CID=31D52B71B7E265B321923E2AB69E642B&TYPE=Event.ClientInst&DATA=%5B%7B%22T%22%3A%22CI.ASBundleLoad%22%2C%22TS%22%3A1734734813178%2C%22Name%22%3A%22AutoSuggestBootstrap%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%22634.5%22%2C%22T%22%3A%22CI.AutosuggestBootstrapLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22LoadTime%22%3A%221631.5%22%2C%22T%22%3A%22CI.AutosuggestJSBundleLoaded%22%2C%22TS%22%3A1734734813181%2C%22Name%22%3A%22PerfInst%22%2C%22FID%22%3A%22AS%22%7D%2C%7B%22T%22%3A%22CI.DevLoc%22%2C%22TS%22%3A1734734813219%2C%22Name%22%3A%22BlockSuccess%22%2C%22FID%22%3A%22AutoPrompt%22%7D%5D

HTTP Response

200

HTTP Request

GET https://www.bing.com/secure/Passport.aspx?popup=1&ssl=1

HTTP Request

POST https://www.bing.com/fd/ls/GLinkPingPost.aspx?IG=E7D37800137E49298A37BC00E0ACD1F9&ID=SERP,5220.2&url=https%3A%2F%2Fwww.bing.com%2Fck%2Fa%3F!%26%26p%3D40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA%26ptn%3D3%26ver%3D2%26hsh%3D4%26fclid%3D31d52b71-b7e2-65b3-2192-3e2ab69e642b%26psq%3Dvirus%2Bdownload%26u%3Da1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8%26ntb%3D1

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://www.bing.com/ck/a?!&&p=40ccbcf751f8a35cf6e0a7bac78098ef88a2cb6aa0f8b56bcec616f9967798d3JmltdHM9MTczNDY1MjgwMA&ptn=3&ver=2&hsh=4&fclid=31d52b71-b7e2-65b3-2192-3e2ab69e642b&psq=virus+download&u=a1aHR0cHM6Ly9naXRodWIuY29tL0RhMmRhbHVzL1RoZS1NQUxXQVJFLVJlcG8&ntb=1

HTTP Response

200

HTTP Request

GET https://www.bing.com/favicon.ico

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Request

POST https://www.bing.com/fd/ls/lsp.aspx

HTTP Response

200

HTTP Response

204

HTTP Response

204

HTTP Request

GET https://www.bing.com/ipv6test/test?FORM=MONITR

HTTP Response

200
95.101.143.201:443

https://th.bing.com/th?id=OVP.HEp9u0w0WPpt_zt658tQ5wHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

tls, http2

msedge.exe

11.2kB
193.9kB
122
176

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=90&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OVP.6A0NTNRLU9Ju4-KYMJINxwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?q=Free+Virus+Download&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Install+Virus&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Downloading+Viruses&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Virus+Download+to+Crash+Computer&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?q=Download+Virus+exe&w=120&h=50&c=7&rs=1&qlt=90&p=0&o=5&pid=1.7&mkt=en-GB&cc=GB&setlang=en&adlt=moderate&t=1

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=91&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=92&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.3bc1a8a9-5d72-433e-aea7-1fd5fa3fea80&w=32&h=32&qlt=93&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.otud5WEcN-GtUOQ1pG48ZwAAAA&w=80&h=80&c=1&vt=10&bgcl=85d4c4&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.A2450BEC-5595-40BA-9F13-D9EC6AB74B9F&w=32&h=32&qlt=94&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=95&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.pvrSFwUIfmriYttj2_rFtAAAAA&w=80&h=80&c=1&vt=10&bgcl=2dd38a&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.310ff766-5c55-4da5-a95c-4a0f7f619bd9&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OIP.mk2zSSoskB4iAJl-n--DXAHgFo&w=248&h=121&c=7&rs=1&p=0&o=5&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.bee2636a-5d38-49e7-946e-f096f85c1e92&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.88940933-7a35-4d8c-9f1b-b2b9808e8192&w=16&h=16&c=7&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=ODLS.82545e96-2f89-4574-8dfc-97c41e377e64&w=32&h=32&qlt=96&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=OIP.wRsmRaKmT0ULs6BzWVOrbAHaEE&w=80&h=80&c=1&vt=10&bgcl=821a4e&r=0&o=6&pid=5.1

HTTP Request

GET https://th.bing.com/th?id=ODLS.b8cf4d43-c110-4f2d-8a21-74cf67c788bf&w=32&h=32&qlt=97&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.c16b5eb3-02e1-44fd-afe5-ceb9e4ff6825&w=32&h=32&qlt=98&pcl=fffffa&o=6&pid=1.2

HTTP Request

GET https://th.bing.com/th?id=ODLS.77471749-fa00-485a-9bc3-67c967dc1567&w=32&h=32&qlt=99&pcl=fffffa&o=6&pid=1.2

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://th.bing.com/th?id=OVP.4NUdTIdaDS1ch-hbwNeS-wHgFo&w=608&h=342&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.KEJlnOfnSJEp5nu-lGrTyQHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP._YGclMKhMhvIjxUGUjGXqwHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Request

GET https://th.bing.com/th?id=OVP.HEp9u0w0WPpt_zt658tQ5wHgFo&w=160&h=90&c=7&rs=1&qlt=90&o=6&pid=1.7

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200
88.221.135.27:443

r.bing.com

tls, http2

msedge.exe

1.1kB
5.1kB
10
11
88.221.135.27:443

https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

tls, http2

msedge.exe

24.4kB
477.7kB
356
376

HTTP Request

GET https://r.bing.com/rp/sXhRoN95PiK_x1NTP9QhFTulIcY.br.css

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/83zI0hMJWlilJFob8oEJ4_0I6j4.br.js

HTTP Request

GET https://r.bing.com/rp/dNBTn3a3hM9Xwm8cr3_ZLArCdWE.br.js

HTTP Request

GET https://r.bing.com/rp/KLrSbzDKMog0mCiPcB9iwoEvlE4.br.js

HTTP Request

GET https://r.bing.com/rp/TaNyfCzxqBX9l7QZbgZUegopTuI.br.js

HTTP Request

GET https://r.bing.com/rp/cfKt7bw67nxWZkkgOIRReDE3rQI.br.js

HTTP Request

GET https://r.bing.com/rp/6O1CvNJpGB5T4QGvosksEhnIbo4.br.js

HTTP Request

GET https://r.bing.com/rp/K3hC1_cQXGFr6cxRJVWYpzZJaAM.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/n23ANye7L3wtUcgKxoGHb7_ezc4.br.js

HTTP Request

GET https://r.bing.com/rp/DmYomXZ0p9--syG1mm6CnQwvRHg.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/2VYJBWEs9lbV3Q50EXL7TNnGBog.br.js

HTTP Request

GET https://r.bing.com/rp/lLk8XmbdNzzlnPRzVzDhaF9yjqw.br.js

HTTP Request

GET https://r.bing.com/rp/Gyuq2bqitqDJM0BeAkbKXGlQXNw.br.js

HTTP Request

GET https://r.bing.com/rp/n21aGRCN5EKHB3qObygw029dyNU.br.js

HTTP Request

GET https://r.bing.com/rp/8CgcSSLayxEVUBf0swP_bQGMId8.br.js

HTTP Request

GET https://r.bing.com/rp/V_fBQ_iVmAgE_Ta_T-6BNXc0ZY4.br.js

HTTP Request

GET https://r.bing.com/rp/9xGNA8UskvA9WHF58zbLOHZ5HvI.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/_2I169N92jVtSc_VEsV0nma5sRY.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/gKwIRAF4fg7noG1zyeUz8x3Jdhc.br.js

HTTP Request

GET https://r.bing.com/rp/zL4sntecq0RmP6dobtS9Rd5WRvU.br.js

HTTP Request

GET https://r.bing.com/rp/psgXZvzYJMEW2ydikIk493Va1d4.br.js

HTTP Request

GET https://r.bing.com/rs/6r/x2/nj/nt6a1ZR520utsLoZmSYgwxdOPgI.js?or=w

HTTP Request

GET https://r.bing.com/rp/5L3iD467J3iJWEPwIjxlK0MMDpY.br.js

HTTP Request

GET https://r.bing.com/rp/c-kfqLSd-OD-g3VtLKozRdXMO14.br.js

HTTP Request

GET https://r.bing.com/rp/K_V1CARn2Q2lTs5njJKUvUkHyi4.br.js

HTTP Request

GET https://r.bing.com/rp/dUzSc2TJEdHviToK914Fg1aekPA.br.js

HTTP Request

GET https://r.bing.com/rp/8LIV7VPMYjV_ya4Ggnu8LBWQIQQ.br.js

HTTP Request

GET https://r.bing.com/rp/NfTD8Ovh04Y_Ni14YxqYB8R_2_Q.br.js

HTTP Request

GET https://r.bing.com/rs/6r/ku/jnc,nj/cNbseG2vlUH2ubvgjbDJtgTzQPo.js?or=w

HTTP Request

GET https://r.bing.com/rp/fRSNKQanUHk53F1a1Bi8UA71Qt4.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/mOy7YpeLJ3c40BBAFNUI6SmOUTY.br.js

HTTP Request

GET https://r.bing.com/rp/6mZmj1db42G_jniFgdT7MCvBgyA.br.js

HTTP Request

GET https://r.bing.com/rp/iY8PAEydb3lbGfuJiuA9ICzXgY8.br.js

HTTP Request

GET https://r.bing.com/rp/UftfQbYuKvGGEUHPU3QGHYd90Z8.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/yZjAz6-B4hIBhJ6D3nAyY_Ebn44.br.js

HTTP Request

GET https://r.bing.com/rp/zlfm-hC70pZAs62UVTTl3KShKOE.br.js

HTTP Request

GET https://r.bing.com/rp/QIeki3qA9hJstYBIxv5k_0WFfjA.br.js

HTTP Request

GET https://r.bing.com/rp/DWZSY9SRnkHaYWjJ109REMim90A.br.js

HTTP Request

GET https://r.bing.com/rp/9uYIRoQB-ThMq970XKGeKvrMhL0.br.js

HTTP Request

GET https://r.bing.com/rp/bdiAPlmUnJhdap3y8myDMEGlF4w.br.js

HTTP Request

GET https://r.bing.com/rp/WwTHOlBv_iLBpZXNWkp-HzVHgrM.br.js

HTTP Request

GET https://r.bing.com/rp/f5TDwH_yltQlwa8Y619w2Guzln4.br.js

HTTP Request

GET https://r.bing.com/rp/LDPtmbi_w4y1oa90D_hi6HqB1QI.br.js

HTTP Request

GET https://r.bing.com/rp/R5OIlHZUEYWuNhJa46yx5Wir2pM.br.js

HTTP Request

GET https://r.bing.com/rp/2uwtCbrcHmq7VZthjm2jjm8hlTk.br.js

HTTP Request

GET https://r.bing.com/rp/9l6lkKg4UtXN9lxLEhjNZw02VrM.br.js

HTTP Request

GET https://r.bing.com/rp/Bb0jjwco4ZJEBGvupFSH5c_T008.br.js

HTTP Request

GET https://r.bing.com/rp/DtSJRclxNUnEHeMSx9SgmOkIQKI.br.js

HTTP Request

GET https://r.bing.com/rp/8aj_I6fSAQ2HauP0CPPAfDwa2j8.br.js

HTTP Request

GET https://r.bing.com/rp/LTCT2zdUcB3ayDDUpC7BI5zxXuE.br.js

HTTP Request

GET https://r.bing.com/rs/6r/sQ/jnc,nj/2RFgnacsz6nPw9vvxd8AGFyaQr8.js?or=w

HTTP Request

GET https://r.bing.com/rp/HdiojNH85n4iu87NAQvDH5bKMnM.br.js

HTTP Request

GET https://r.bing.com/rp/s_KB_GYETp6JptI_mOoLcYDN4OY.br.js

HTTP Request

GET https://r.bing.com/rp/BFQDsdSF9E9Gp0u-xRbmGVfJfe0.br.js

HTTP Request

GET https://r.bing.com/rp/WPedHfV8dQrn4qkif5azDZSqmn8.br.js

HTTP Request

GET https://r.bing.com/rp/nc-eSocRvb1YGk0LjP4DtvgRRsw.br.js

HTTP Request

GET https://r.bing.com/rp/5jOFZTRZRQNYEniUpjuVlRlTSUA.br.js

HTTP Request

GET https://r.bing.com/rp/8BLbyUK5EaqCuzmCEcf9-meevmE.br.js

HTTP Request

GET https://r.bing.com/rp/YOfvioAlqeLJzUxJ3VRDJvFPi5Q.br.js

HTTP Request

GET https://r.bing.com/rp/7LkHIwasTuL6tufzeF3vEaazAxw.br.js

HTTP Request

GET https://r.bing.com/rp/MCwdqGFTwqu20jt3177s57V4wZk.br.js

HTTP Request

GET https://r.bing.com/rp/dDiRViGCXHkOBl6zHkdBDLk0yFg.br.js

HTTP Request

GET https://r.bing.com/rp/9Fqz5Ex6jCtgxHZiTZCH48EoBds.br.js

HTTP Request

GET https://r.bing.com/rp/qY42f0yZJzcOD6Gr6zubromZGRk.br.js

HTTP Request

GET https://r.bing.com/rp/YALqEqJYnL-gaTc_XU1h3jHCQgc.br.js

HTTP Request

GET https://r.bing.com/rp/RMRjctrz--TNvbEliu0umBztyAQ.br.js

HTTP Request

GET https://r.bing.com/rp/6juFsmmZTw2skj7CvpgreXtsgqM.br.js

HTTP Request

GET https://r.bing.com/rp/CuoJ-XSESmq5e-S0atX4JdNgEbQ.br.js

HTTP Request

GET https://r.bing.com/rp/3s0czFTJyV5b3KCC7geWICWvvPs.br.js

HTTP Request

GET https://r.bing.com/rp/wNhUjm3kl_kvyfrio44J6j1zdYo.br.js

HTTP Request

GET https://r.bing.com/rp/lwQThTlaI10v50gbypuOTf2JDcM.br.js

HTTP Request

GET https://r.bing.com/rp/B-tRIg18CBKTY5_L9A8pOhYyyQo.br.js

HTTP Request

GET https://r.bing.com/rp/mRnHl5xOMNMCkNGN3wISIz0ETug.br.js

HTTP Request

GET https://r.bing.com/rp/X9zPQVZQzKFTYze2B2WNn1LJCS4.br.js

HTTP Request

GET https://r.bing.com/rp/1u_LY-3P7BIagPGDkiUCRzkKi-0.br.js

HTTP Request

GET https://r.bing.com/rp/wJ4ypLxMemRfvxvJkUCpuYEBwew.br.js

HTTP Request

GET https://r.bing.com/rp/RvRBoZ5KQDNHwbHfo-_ZBZIoYQo.br.js

HTTP Request

GET https://r.bing.com/rp/bzAVZoOHiaJeSbLoUcTPF4HPvJQ.br.js

HTTP Request

GET https://r.bing.com/rp/gfI083AUtzdZuPReAN6CvS-Ca98.br.js

HTTP Request

GET https://r.bing.com/rp/b1KIElS8CoqVTHRuF5IaPe1_xYo.br.js

HTTP Request

GET https://r.bing.com/rp/jJ4Nh5QSrSxNeZCoXz6QBAA-1pM.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/4a2l6ts7ENpX5gGW0kp5U2iD6h8.br.js

HTTP Request

GET https://r.bing.com/rp/eKvcHdnNwo1WcxoSioV4ztnfZk8.br.js

HTTP Request

GET https://r.bing.com/rp/Sv8bO2oxkbGjZh6Pe_GKzG1DtDU.br.js

HTTP Request

GET https://r.bing.com/rp/-2EVJNDwymhr08bVch00GwpjiDA.br.js

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/lwgCOY8rCo0Ub0btSshwRlT9HWI.br.js

HTTP Request

GET https://r.bing.com/rp/ulJ3ckR0YcGpvIX6xhO4prJhEQQ.br.js

HTTP Response

200

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/ivu0QwP26BHIJjH_DSqboRdhsO0.br.js

HTTP Response

200

HTTP Request

GET https://r.bing.com/rp/rSGsMdC73uduuQlIQndCFjDqLb0.br.js

HTTP Request

GET https://r.bing.com/rp/VKotk_QDV7V7jdYhLvGcrJlzHyE.br.js

HTTP Response

200

HTTP Response

200
95.101.143.201:443

th.bing.com

tls, http2

msedge.exe

1.0kB
5.1kB
9
12
20.190.159.4:443

https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=3b247a9f-8530-4140-ab81-08149aa6b72d&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22E7D37800137E49298A37BC00E0ACD1F9%22%7d

tls, http2

msedge.exe

2.7kB
7.8kB
15
13

HTTP Request

GET https://login.microsoftonline.com/common/oauth2/authorize?client_id=9ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7&response_type=id_token+code&nonce=3b247a9f-8530-4140-ab81-08149aa6b72d&redirect_uri=https%3a%2f%2fwww.bing.com%2forgid%2fidtoken%2fconditional&scope=openid%20email%20profile%209ea1ad79-fdb6-4f9a-8bc3-2b70f96e34c7/.default&response_mode=form_post&instance_aware=true&msafed=0&prompt=none&state=%7b%22ig%22%3a%22E7D37800137E49298A37BC00E0ACD1F9%22%7d

HTTP Response

200
185.199.108.133:443

https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe

tls, http2

msedge.exe

7.6kB
363.4kB
140
270

HTTP Request

GET https://raw.githubusercontent.com/Da2dalus/The-MALWARE-Repo/refs/heads/master/Ransomware/CryptoLocker.exe

HTTP Response

200
184.164.136.134:80

{34184A33-0407-212E-3320-09040709E2C2}.exe

260 B
5

8.8.8.8:53

github.com

dns

msedge.exe

56 B
72 B
1
1

DNS Request

github.com

DNS Response

20.26.156.215
8.8.8.8:53

avatars.githubusercontent.com

dns

msedge.exe

75 B
139 B
1
1

DNS Request

avatars.githubusercontent.com

DNS Response

185.199.110.133

185.199.111.133

185.199.109.133

185.199.108.133
8.8.8.8:53

github.githubassets.com

dns

msedge.exe

69 B
133 B
1
1

DNS Request

github.githubassets.com

DNS Response

185.199.110.154

185.199.111.154

185.199.108.154

185.199.109.154
8.8.8.8:53

217.106.137.52.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

217.106.137.52.in-addr.arpa
8.8.8.8:53

github-cloud.s3.amazonaws.com

dns

msedge.exe

75 B
253 B
1
1

DNS Request

github-cloud.s3.amazonaws.com

DNS Response

52.217.225.25

52.217.126.153

52.216.207.147

52.216.249.156

3.5.28.57

3.5.28.76

16.15.176.243

16.15.217.23
8.8.8.8:53

215.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

215.156.26.20.in-addr.arpa
8.8.8.8:53

81.144.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

81.144.22.2.in-addr.arpa
8.8.8.8:53

user-images.githubusercontent.com

dns

msedge.exe

79 B
143 B
1
1

DNS Request

user-images.githubusercontent.com

DNS Response

185.199.111.133

185.199.110.133

185.199.109.133

185.199.108.133
8.8.8.8:53

134.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

134.32.126.40.in-addr.arpa
8.8.8.8:53

95.221.229.192.in-addr.arpa

dns

73 B
144 B
1
1

DNS Request

95.221.229.192.in-addr.arpa
8.8.8.8:53

camo.githubusercontent.com

dns

msedge.exe

72 B
136 B
1
1

DNS Request

camo.githubusercontent.com

DNS Response

185.199.108.133

185.199.109.133

185.199.110.133

185.199.111.133
8.8.8.8:53

133.110.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.110.199.185.in-addr.arpa
8.8.8.8:53

154.110.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

154.110.199.185.in-addr.arpa
8.8.8.8:53

133.108.199.185.in-addr.arpa

dns

74 B
118 B
1
1

DNS Request

133.108.199.185.in-addr.arpa
8.8.8.8:53

collector.github.com

dns

msedge.exe

66 B
115 B
1
1

DNS Request

collector.github.com

DNS Response

140.82.114.21
8.8.8.8:53

api.github.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

api.github.com

DNS Response

20.26.156.210
8.8.8.8:53

21.114.82.140.in-addr.arpa

dns

72 B
117 B
1
1

DNS Request

21.114.82.140.in-addr.arpa
8.8.8.8:53

210.156.26.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

210.156.26.20.in-addr.arpa
224.0.0.251:5353

526 B
8
8.8.8.8:53

www.virustotal.com

dns

msedge.exe

64 B
80 B
1
1

DNS Request

www.virustotal.com

DNS Response

34.54.88.138
34.54.88.138:443

www.virustotal.com

https

msedge.exe

37.4kB
2.7MB
425
2112
8.8.8.8:53

www.recaptcha.net

dns

msedge.exe

63 B
79 B
1
1

DNS Request

www.recaptcha.net

DNS Response

142.250.179.67
8.8.8.8:53

138.88.54.34.in-addr.arpa

dns

71 B
122 B
1
1

DNS Request

138.88.54.34.in-addr.arpa
8.8.8.8:53

195.20.217.172.in-addr.arpa

dns

73 B
171 B
1
1

DNS Request

195.20.217.172.in-addr.arpa
8.8.8.8:53

67.179.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

67.179.250.142.in-addr.arpa
8.8.8.8:53

168.201.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

168.201.250.142.in-addr.arpa
8.8.8.8:53

region1.google-analytics.com

dns

msedge.exe

74 B
106 B
1
1

DNS Request

region1.google-analytics.com

DNS Response

216.239.34.36

216.239.32.36
8.8.8.8:53

recaptcha.net

dns

msedge.exe

59 B
75 B
1
1

DNS Request

recaptcha.net

DNS Response

172.217.18.195
8.8.8.8:53

36.34.239.216.in-addr.arpa

dns

72 B
132 B
1
1

DNS Request

36.34.239.216.in-addr.arpa
8.8.8.8:53

110.179.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

110.179.250.142.in-addr.arpa
8.8.8.8:53

195.18.217.172.in-addr.arpa

dns

73 B
142 B
1
1

DNS Request

195.18.217.172.in-addr.arpa
172.217.18.195:443

recaptcha.net

https

msedge.exe

5.3kB
41.1kB
23
38
8.8.8.8:53

www.google.com

dns

msedge.exe

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

172.217.20.164
8.8.8.8:53

170.201.250.142.in-addr.arpa

dns

148 B
113 B
2
1

DNS Request

170.201.250.142.in-addr.arpa

DNS Request

170.201.250.142.in-addr.arpa
8.8.8.8:53

163.20.217.172.in-addr.arpa

dns

146 B
171 B
2
1

DNS Request

163.20.217.172.in-addr.arpa

DNS Request

163.20.217.172.in-addr.arpa
34.54.88.138:443

www.virustotal.com

https

msedge.exe

2.3kB
5.7kB
8
10
8.8.8.8:53

164.20.217.172.in-addr.arpa

dns

73 B
171 B
1
1

DNS Request

164.20.217.172.in-addr.arpa
216.239.34.36:443

region1.google-analytics.com

https

msedge.exe

4.7kB
7.3kB
8
10
8.8.8.8:53

232.168.11.51.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

232.168.11.51.in-addr.arpa
8.8.8.8:53

212.20.149.52.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

212.20.149.52.in-addr.arpa
8.8.8.8:53

18.31.95.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

18.31.95.13.in-addr.arpa
8.8.8.8:53

107.12.20.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

107.12.20.2.in-addr.arpa
8.8.8.8:53

34.135.221.88.in-addr.arpa

dns

144 B
274 B
2
2

DNS Request

34.135.221.88.in-addr.arpa

DNS Request

34.135.221.88.in-addr.arpa
8.8.8.8:53

th.bing.com

dns

msedge.exe

57 B
238 B
1
1

DNS Request

th.bing.com

DNS Response

95.101.143.201

88.221.135.27

88.221.135.33

88.221.135.25
8.8.8.8:53

r.bing.com

dns

msedge.exe

56 B
236 B
1
1

DNS Request

r.bing.com

DNS Response

88.221.135.27

95.101.143.201

88.221.135.34

88.221.135.33
8.8.8.8:53

201.143.101.95.in-addr.arpa

dns

73 B
139 B
1
1

DNS Request

201.143.101.95.in-addr.arpa
8.8.8.8:53

27.135.221.88.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

27.135.221.88.in-addr.arpa
8.8.8.8:53

login.microsoftonline.com

dns

msedge.exe

71 B
306 B
1
1

DNS Request

login.microsoftonline.com

DNS Response

20.190.159.4

20.190.159.68

20.190.159.71

40.126.31.71

20.190.159.73

20.190.159.2

20.190.159.0

40.126.31.67
8.8.8.8:53

4.159.190.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

4.159.190.20.in-addr.arpa
8.8.8.8:53

138.32.126.40.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

138.32.126.40.in-addr.arpa
8.8.8.8:53

237.197.79.204.in-addr.arpa

dns

73 B
143 B
1
1

DNS Request

237.197.79.204.in-addr.arpa
8.8.8.8:53

172.210.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.210.232.199.in-addr.arpa
8.8.8.8:53

raw.githubusercontent.com

dns

msedge.exe

71 B
135 B
1
1

DNS Request

raw.githubusercontent.com

DNS Response

185.199.108.133

185.199.110.133

185.199.111.133

185.199.109.133
8.8.8.8:53

73.144.22.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

73.144.22.2.in-addr.arpa
8.8.8.8:53

48.229.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

48.229.111.52.in-addr.arpa
8.8.8.8:53

awtglbcfayxet.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

awtglbcfayxet.ru

DNS Request

awtglbcfayxet.ru
8.8.8.8:53

haavwidersifu.org

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
145 B
1
1

DNS Request

haavwidersifu.org
8.8.8.8:53

umbhwdhxxtjtm.co.uk

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

65 B
133 B
1
1

DNS Request

umbhwdhxxtjtm.co.uk
8.8.8.8:53

iuxgxyiqloass.info

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

128 B
286 B
2
2

DNS Request

iuxgxyiqloass.info

DNS Request

iuxgxyiqloass.info
8.8.8.8:53

vhyrxtmkrpbht.com

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

63 B
136 B
1
1

DNS Request

vhyrxtmkrpbht.com
8.8.8.8:53

tufsievudboxq.net

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
272 B
2
2

DNS Request

tufsievudboxq.net

DNS Request

tufsievudboxq.net
8.8.8.8:53

usgrsyctjhxeq.biz

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

126 B
250 B
2
2

DNS Request

usgrsyctjhxeq.biz

DNS Request

usgrsyctjhxeq.biz
8.8.8.8:53

upddjubhwwglh.ru

dns

{34184A33-0407-212E-3320-09040709E2C2}.exe

124 B
246 B
2
2

DNS Request

upddjubhwwglh.ru

DNS Request

upddjubhwwglh.ru
8.8.8.8:53

78.239.69.13.in-addr.arpa

dns

142 B
290 B
2
2

DNS Request

78.239.69.13.in-addr.arpa

DNS Request

78.239.69.13.in-addr.arpa

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Browser Information Discovery

T1217

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
56a4f78e21616a6e19da57228569489b

SHA1
21bfabbfc294d5f2aa1da825c5590d760483bc76

SHA256
d036661e765ee8fd18978a2b5501e8df6b220e4bca531d9860407555294c96fb

SHA512
c2c3cd1152bb486028fe75ab3ce0d0bc9d64c4ca7eb8860ddd934b2f6e0140d2c913af4fa082b88e92a6a6d20fd483a1cb9813209f371a0f56374bc97d7f863b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

Filesize
152B

MD5
e443ee4336fcf13c698b8ab5f3c173d0

SHA1
9bf70b16f03820cbe3158e1f1396b07b8ac9d75a

SHA256
79e277da2074f9467e0518f0f26ca2ba74914bee82553f935a0ccf64a0119e8b

SHA512
cbf6f6aa0ea69b47f51592296da2b7be1180e7b483c61b4d17ba9ee1a2d3345cbe0987b96f4e25de1438b553db358f330aad8a26e8522601f055c3d5a8313cdd

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002

Filesize
20KB

MD5
0b17fd0bdcec9ca5b4ed99ccf5747f50

SHA1
003930a2232e9e12d2ca83e83570e0ffd3b7c94e

SHA256
c6e08c99de09f0e65e8dc2fae28b8a1709dd30276579e3bf39be70813f912f1d

SHA512
49c093af7533b8c64ad6a20f82b42ad373d0c788d55fa114a77cea92a80a4ce6f0efcad1b4bf66cb2631f1517de2920e94b8fc8cc5b30d45414d5286a1545c28

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003

Filesize
37KB

MD5
56690d717897cfa9977a6d3e1e2c9979

SHA1
f46c07526baaf297c664edc59ed4993a6759a4a3

SHA256
7c3de14bb18f62f0506feac709df9136c31bd9b327e431445e2c7fbc6d64752e

SHA512
782ec47d86276a6928d699706524753705c40e25490240da92446a0efbfcb8714aa3650d9860f9b404badf98230ff3eb6a07378d8226c08c4ee6d3fe3c873939

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004

Filesize
38KB

MD5
c7b82a286eac39164c0726b1749636f1

SHA1
dd949addbfa87f92c1692744b44441d60b52226d

SHA256
8bf222b1dd4668c4ffd9f9c5f5ab155c93ad11be678f37dd75b639f0ead474d0

SHA512
be7b1c64b0f429a54a743f0618ffbc8f44ede8bc514d59acd356e9fe9f682da50a2898b150f33d1de198e8bcf82899569325c587a0c2a7a57e57f728156036e5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005

Filesize
18KB

MD5
7d54dd3fa3c51a1609e97e814ed449a0

SHA1
860bdd97dcd771d4ce96662a85c9328f95b17639

SHA256
7a258cd27f674e03eafc4f11af7076fb327d0202ce7a0a0e95a01fb33c989247

SHA512
17791e03584e77f2a6a03a7e3951bdc3220cd4c723a1f3be5d9b8196c5746a342a85226fcd0dd60031d3c3001c6bdfee0dcc21d7921ea2912225054d7f75c896

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

Filesize
26KB

MD5
73fc3bb55f1d713d2ee7dcbe4286c9e2

SHA1
b0042453afe2410b9439a5e7be24a64e09cf2efa

SHA256
60b367b229f550b08fabc0c9bbe89d8f09acd04a146f01514d48e0d03884523f

SHA512
d2dc495291fd3529189457ab482532026c0134b23ff50aa4417c9c7ca11c588421b655602a448515f206fa4f1e52ee67538559062263b4470abd1eccf2a1e86b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

Filesize
18KB

MD5
f1dceb6be9699ca70cc78d9f43796141

SHA1
6b80d6b7d9b342d7921eae12478fc90a611b9372

SHA256
5898782f74bbdeaa5b06f660874870e1d4216bb98a7f6d9eddfbc4f7ae97d66f

SHA512
b02b9eba24a42caea7d408e6e4ae7ad35c2d7f163fd754b7507fc39bea5d5649e54d44b002075a6a32fca4395619286e9fb36b61736c535a91fe2d9be79048de

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

Filesize
18KB

MD5
8bd66dfc42a1353c5e996cd88dc1501f

SHA1
dc779a25ab37913f3198eb6f8c4d89e2a05635a6

SHA256
ef8772f5b2cf54057e1cfb7cb2e61f09cbd20db5ee307133caf517831a5df839

SHA512
203a46b2d09da788614b86480d81769011c7d42e833fa33a19e99c86a987a3bd8755b89906b9fd0497a80a5cf27f1c5e795a66fe3d1c4a921667ec745ccf22f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

Filesize
39KB

MD5
a2a3a58ca076236fbe0493808953292a

SHA1
b77b46e29456d5b2e67687038bd9d15714717cda

SHA256
36302a92ccbf210dcad9031810929399bbbaa9df4a390518892434b1055b5426

SHA512
94d57a208100dd029ea07bea8e1a2a7f1da25b7a6e276f1c7ca9ba3fe034be67fab2f3463d75c8edd319239155349fd65c0e8feb5847b828157c95ce8e63b607

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

Filesize
53KB

MD5
2ee3f4b4a3c22470b572f727aa087b7e

SHA1
6fe80bf7c2178bd2d17154d9ae117a556956c170

SHA256
53d7e3962cad0b7f5575be02bd96bd27fcf7fb30ac5b4115bb950cf086f1a799

SHA512
b90ae8249108df7548b92af20fd93f926248b31aedf313ef802381df2587a6bba00025d6d99208ab228b8c0bb9b6559d8c5ec7fa37d19b7f47979f8eb4744146

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

Filesize
58KB

MD5
6c1e6f2d0367bebbd99c912e7304cc02

SHA1
698744e064572af2e974709e903c528649bbaf1d

SHA256
d33c23a0e26d8225eeba52a018b584bb7aca1211cdebfffe129e7eb6c0fe81d8

SHA512
ebb493bef015da8da5e533b7847b0a1c5a96aa1aeef6aed3319a5b006ed9f5ef973bea443eaf5364a2aaf1b60611a2427b4f4f1388f8a44fdd7a17338d03d64a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

Filesize
88KB

MD5
76d82c7d8c864c474936304e74ce3f4c

SHA1
8447bf273d15b973b48937326a90c60baa2903bf

SHA256
3329378951655530764aaa1f820b0db86aa0f00834fd7f51a48ad752610d60c8

SHA512
a0fc55af7f35ad5f8ac24cea6b9688698909a2e1345460d35e7133142a918d9925fc260e08d0015ec6fa7721fbeae90a4457caa97d6ce01b4ff46109f4cd5a46

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e

Filesize
105KB

MD5
b8b23ac46d525ba307835e6e99e7db78

SHA1
26935a49afb51e235375deb9b20ce2e23ca2134c

SHA256
6934d9e0917335e04ff86155762c27fa4da8cc1f5262cb5087184827004525b6

SHA512
205fb09096bfb0045483f2cbfe2fc367aa0372f9a99c36a7d120676820f9f7a98851ee2d1e50919a042d50982c24b459a9c1b411933bf750a14a480e063cc7f6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f

Filesize
16KB

MD5
5615a54ce197eef0d5acc920e829f66f

SHA1
7497dded1782987092e50cada10204af8b3b5869

SHA256
b0ba6d78aad79eaf1ae10f20ac61d592ad800095f6472cfac490411d4ab05e26

SHA512
216595fb60cc9cfa6fef6475a415825b24e87854f13f2ee4484b290ac4f3e77628f56f42cb215cd8ea3f70b10eebd9bc50edeb042634777074b49c129146ef6a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f

Filesize
215KB

MD5
d79b35ccf8e6af6714eb612714349097

SHA1
eb3ccc9ed29830df42f3fd129951cb8b791aaf98

SHA256
c8459799169b81fdab64d028a9ebb058ea2d0ad5feb33a11f6a45a54a5ccc365

SHA512
f4be1c1e192a700139d7cff5059af81c0234ed5f032796036a1a4879b032ce4eedd16a121bbf776f17bc84a0012846f467ad48b46db4008841c25b779c7d8f5a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
4KB

MD5
f664848908c22a8cfc2ba1ced7c1bdd7

SHA1
982d5dc7641350218e94ab37c60ea08572a16e71

SHA256
48a72bb6bd8b53ed1f1e83de65431d382e7cfb1dcb91ba4efb08e6083ade0777

SHA512
4b1721da3aa976ad560309958cec5ef5aafcaa4b45e92eb3d1e70ca2ba8addc8ecac017005eb1fc69e1b1fedd762e56b6d770e3185e04cf50769183edcc3ad56

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

Filesize
3KB

MD5
0197605f73db76035b37605d6aca6b18

SHA1
ad022b4ee7c7a8fbf143cfeaa72d1a27cc05d48d

SHA256
136ca7edfe046d857280d4520a5b85b1f4e9834953deaeb1220f994f648224c3

SHA512
150f9d287a8c8916550e12907d05a39b1003dd70a1728d601e3f64d21985aaafbfaccd58da808bcfe1a78fb9144f527b027098707b71ad16c8396259a52b9545

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

Filesize
3KB

MD5
9a17f50ac7b7e102f01616b5fa94914b

SHA1
34b85bed923fe8b31a0cd2f84cd9ebf2a1a8d445

SHA256
bd6d00d9616f748c379f24f09031d61b732c25001b9734e9559635c4e2ca54e7

SHA512
2591a7e3999a005b39c5017bca98488eb93626383cbffe4c5016baf4afeabf772e282e553333cbb7d50ff2d96b91d196d16d132bfeb6060b056385a06b79cb71

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
5KB

MD5
2f58fe8578ced1867a41ba97dfff3d3c

SHA1
21af053a3012f36f324ef0f6bfa518906aa88b39

SHA256
7f185dcdafd78bc0b25a858322bb30ee84e3aea6251abb183a87dba294af9e04

SHA512
48fb44d2817cf81c8c0cf0ddaa592d6d0e5e08c5df486c5a63494d914b436b037ac1cddb74d9b6b94523a3498773ea7154d295e0d315eb925ec8d70acfb68e3e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
dbad50d3ff1993d85f3fc321cd3b5a8a

SHA1
dec47d2b671a145c90caa8b37ce0152477840197

SHA256
fc740955e70bb93f4712312369859116ff14e513e73f945c595a08c5022ddf74

SHA512
b1ce69aa841446f3f53d1cceb239d0359e6105f17421245de1cd8be411719bd6e14c414f13e48c446355309e0fe16edab7b4c2abba9fbcd02c90860cc70d6579

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
9d93d652f824b02247a65ed43dfcecb1

SHA1
a7901a549dc77f5a8a4e20959596acde394fa8bf

SHA256
281cb9aa99966f68f2dcf7c9944c27041f943f826eafeda8c330d74755ee96f8

SHA512
57169f78ac849bbacaabeaa12ee54756c5954bcfb41b63cf0bce4a129bd1a2895c62475b0733223294d4bd361f811888fa5f655d324f0bef8ab31b9b87aae545

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
6KB

MD5
22fb742d6f15c7ba512e6899c121da9a

SHA1
f2d94437b4b159eb5cd61e2dfd8bf4fd1b16688a

SHA256
18a667ab29363d9c9f2c85331c2e3c356e9a2358ab6c539f6a6630ba6e6c25d2

SHA512
07b078e31dad0196596082f1c794988759d0695ada1152ca98a0ea6f892f56a7ab05939123c5bcdc0180f14318f47b605d9a1c5fd7daef4c977a3da14b578042

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

Filesize
8KB

MD5
272f522b8b2914da950b2d9476907542

SHA1
444125cd7840ccb5ee671b81f8361e137709c7dd

SHA256
7df779e910bc2a9fd0293b464f79fd612b0b2fe2c42e1e1b329eff96efad807a

SHA512
a42c338b67c1aa53fcbb3c2527a8e3891bdbb73a31cb0fed23ce9fd74a06deaebc9291bf7e6a131293116375bc231bc7ee5f70c0639e2a2863e8660f70cc0736

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

Filesize
72B

MD5
b0fe38a0b6969dd605f8dc5751084334

SHA1
1f471d870eed516ab2075603397863b652e0002b

SHA256
1e84f468a2fc46a1708fd99d5da31407e5b106159a1ef9396b7f9eb209ff4d7f

SHA512
8f5b39a15792bb45bd7cb7d20c395eba249732443072f4958dde03611a9455fd8e808b3fd13531af522cf25d070e6cfa40115ec4bb4650078ccce2c0c59ef9d6

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe584c94.TMP

Filesize
48B

MD5
1dd8a7b04b0ee3b0277ccb47698dfc06

SHA1
7686c958acc6c1159b2a2541146e2260d9043c8f

SHA256
71fce6dc7076d5b500567f101a96494d38386f5e5e043c227e0c1037dab9996c

SHA512
bbc4da17ae73cf3742071a44dad9f6cff0d447ee926cb230cfea65b3247ca6eb16acb412aae00ea68bb4a7dcc9542b53f72872fedc5a975fc24681be0e597c01

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
a4710ac9291e561624ba3921c169c675

SHA1
699e242e554e955805b28fb95a3ed059adce6eb9

SHA256
47985f12c9fbfaa96846a47a2dda5a390dfca261adaeed670ef3326166380baa

SHA512
efe1576117a14e36e8ed30c0918d18aea5001b7c16bc58cce389d359befde5ddf6279f633128498176c3f1e004aee96a2b7728f80e03b93102905e8e42936b1b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
1f0558f85501b1e0ed7df1f50b5aa4e7

SHA1
34f4ce26c4c40776f96ef343495a7dbd66610d57

SHA256
4aef6a9979a9447a95735760ba855f62e496384d70d3f8140d9f9d71bc139564

SHA512
d5980936bd7649217a1a3264a64028e31968d3ff8ea12b2d0b7621c90c85cf4bac9b9efd2ba6929b1a9c266f07debc7148f6b474b30badac028468594b51a76d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
2KB

MD5
5938167468132cdfdbf971c5af6cb332

SHA1
0ec4853d1e1022cd10cb8e1ea80d513e87b9c211

SHA256
d76a480c3aaa547ced31623646c69a139d241d32ff9574608b53e05e5b957a76

SHA512
a35afec77ebf4c8bc216ff8a2be3c1b81f8da451c6dda1a95431a20b17a63b162ff316ca6d6e19e704eacf3d713563c2072c4e25f615874c578f5a0d9f6d5ed5

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
5de514fdbc1e79889a9e372156469524

SHA1
2de8a69873cf9a35c80823ea1bb0ef588e90f489

SHA256
de06bcc0e74216eb5409d4bdabb1e643ae8ffca455dd2872abfecf9b485ec1af

SHA512
82e3a2db7931c71cc90d2ed9b7363f27435f66ae4735d84957d22edcc61453c7f81a241e5ee9d9a001f18a128da18dbb19c35f5270df7fec47619ab5066d5dbf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
8284fc82b0c457f8ba3f7e1afc31d38f

SHA1
b93e0196bceda7cbc5c356c0476adc509f3a98d7

SHA256
c4d224075caafc2d1906ffcfe234fc15d760237089c4f0c303d7328f2604606a

SHA512
4859d689789eef2926f2899f5a10292964c9da36caab571c442274583ffcfb756495834432e526866cef1ad9b9b5b557a407afc1341795490de78fe6e39c2f9d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

Filesize
1KB

MD5
7656232c2e0c7b617342926465b34064

SHA1
547b5c038391f4987f5a6bf55f5a7fb703c7da69

SHA256
dd5db20fb07f42d357ebabb922a641de76e8027e6c2a410babf1901cd816fa90

SHA512
62c84a7414e2e0787f60e9ef31a365bace6cf9f935cde284995113bceccd3e96b1d14a0d16035608e69fdc65fbedd6dba93753c0a2080c0fd5a60c5055b3dda3

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5819ec.TMP

Filesize
1KB

MD5
fb20ffa0cedb1d10db6de7b3c8f802ff

SHA1
f4c65ba024532128e8002c14fc9e74017ced0f1b

SHA256
7d4b88be082c79b04479eb1ea8fe4c95d03abcc2e089315466c502fc49f5f2fc

SHA512
dea696c6990709e96d9624cd3892294f00cc3c2067bb4c980e581f6b728aa167678fa58ab1529a9d4ece77ccf8c3bf1f0496fc52fd9435840a7e1223bb6d134b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

Filesize
16B

MD5
6752a1d65b201c13b62ea44016eb221f

SHA1
58ecf154d01a62233ed7fb494ace3c3d4ffce08b

SHA256
0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

SHA512
9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
11KB

MD5
59590ec7141feaf97c2709a1580483e0

SHA1
38986dd536eaa1eacdc23b8d6fd3c74a344c1db9

SHA256
bd5c3f6af3ac10d10b574f51aa36e8079bb8d0da813f80aa0d74982719d22ac8

SHA512
cf14c515cedac66750ccd1de48f3abaccbffcf6dc509ed632841acbec1057e7532c883abe5053d25a3ce1c829f3a562db2ab9e501eb9f6ed3d96a6c153b4752a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

Filesize
10KB

MD5
dee7c7086e7d87c5db8bfd1f789f459d

SHA1
959b99d02ddbf8753da8477ca013478ea675275d

SHA256
e80c3830186efb534472a5f5bfb68c4b00f849f680ec8508b5facf4c599b9ae6

SHA512
e7eeacfd161f77a5cbfd8427f2a6173442e0148b6664a5b2c410373c38ae622e16e1d2b11b33774c2c3a83b42d4a1918d3594fab656559626087481e1ff0998d

Download Submit
C:\Users\Admin\Downloads\Unconfirmed 373104.crdownload

Filesize
338KB

MD5
04fb36199787f2e3e2135611a38321eb

SHA1
65559245709fe98052eb284577f1fd61c01ad20d

SHA256
d765e722e295969c0a5c2d90f549db8b89ab617900bf4698db41c7cdad993bb9

SHA512
533d6603f6e2a77bd1b2c6591a135c4717753d53317c1be06e43774e896d9543bcd0ea6904a0688aa84b2d8424641d68994b1e7dc4aa46d66c36feecb6145444

Download Submit

Analysis

Sharing

Errors

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Request

HTTP Response

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response